Client-side anti-exploits are pretty much useless. If an exploiter is interested in your game, it will be bypassed easily. I don’t think you can kick the LocalPlayer from a LocalScript either.
You should use a server-sided anti-exploit. If you are not very experienced yet, don’t focus to much on creating an anti-exploit. In my opinion, anti-exploits like speed, flying, flinging, etc. should be done when your game is release-ready and they should be adapted to your game.
This doesn’t apply to anything else! Never trust the client. Especially not with RemoteEvents.
Good luck on your project