-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathnullbot.py
130 lines (118 loc) · 5.67 KB
/
nullbot.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
import discord
from discord.ext import commands
import subprocess
import os
import re
import ipaddress
import socket
import whois
data = {
"prefix": "!" # or whatever prefix you want to use
}
intents = discord.Intents.all()
intents.members = True
client = commands.Bot(command_prefix=data['prefix'], intents=intents)
def sanitize(input_str):
return re.sub('[^A-Za-z0-9\.\-]', '', input_str)
def is_authorized(user):
authorized_roles = ["Root", "Moderator","NullBot User"] # Replace with your own authorized roles
for role in user.roles:
if role.name in authorized_roles:
return True
return False
@client.event
async def on_ready():
print('Bot is ready!')
@client.event
async def on_message(message):
if message.author.bot:
return
args = message.content.split(" ")
if args[0] == data['prefix'] + 'console':
if args[1] == 'help':
await message.channel.send("List of available commands: \n"
"-----------------------------------------------------------------------\n"
+ data['prefix'] + "console whois - Get WHOIS Information About A Domain\n"
+ data['prefix'] + "console nmap - Detect OS & Find Open Ports On A Host\n"
+ data['prefix'] + "console nikto - Scan a web server for vulnerabilities\n"
"-----------------------------------------------------------------------\n"
"NullBot Beta v1.0.0 Developed By: [ SirCryptic ] - [ NullSecurityTeam ]\n")
elif args[1] == 'nmap':
if not is_authorized(message.author):
await message.channel.send("You are not authorized to run this command.")
return
sanitizedInput = sanitize(args[2])
try:
ip = ipaddress.ip_address(sanitizedInput)
if ip.is_loopback or ip.is_link_local:
await message.channel.send("Scanning localhost and link-local addresses is not allowed.")
return
host = ipaddress.ip_network('10.0.0.0/8')
if ip in host:
await message.channel.send("Scanning addresses within the host machine's network is not allowed.")
return
except ValueError:
# Check if the input is a domain name
try:
ip = ipaddress.ip_address(socket.gethostbyname(sanitizedInput))
except socket.gaierror:
await message.channel.send("Invalid IP address or domain name.")
return
print(f"Scanning IP: {ip}")
command = f"sudo nmap -O {ip}"
output = subprocess.check_output(command, shell=True).decode()
await message.channel.send(output)
elif args[1] == 'nikto':
if not is_authorized(message.author):
await message.channel.send("You are not authorized to run this command.")
return
sanitizedInput = sanitize(args[2])
try:
ip = ipaddress.ip_address(sanitizedInput)
if ip.is_loopback or ip.is_link_local:
await message.channel.send("Scanning localhost and link-local addresses is not allowed.")
return
host = ipaddress.ip_network('10.0.0.0/8')
if ip in host:
await message.channel.send("Scanning addresses within the host machine's network is not allowed.")
return
except ValueError:
# Check if the input is a domain name
try:
ip = ipaddress.ip_address(socket.gethostbyname(sanitizedInput))
except socket.gaierror:
await message.channel.send("Invalid IP address or domain name.")
return
print(f"Scanning IP: {ip}")
command = ["nikto", "-h", str(ip)]
output = subprocess.check_output(command).decode()
# Split the output into chunks of 2000 characters to fit in Discord messages
for chunk in [output[i:i+2000] for i in range(0, len(output), 2000)]:
await message.channel.send(chunk)
elif args[1] == 'whois':
if not is_authorized(message.author):
await message.channel.send("You are not authorized to run this command.")
return
sanitizedInput = sanitize(args[2])
try:
ip = ipaddress.ip_address(sanitizedInput)
if ip.is_loopback or ip.is_link_local:
await message.channel.send("Performing a whois lookup on localhost and link-local addresses is not allowed.")
return
host = ipaddress.ip_network('10.0.0.0/8')
if ip in host:
await message.channel.send("Performing a whois lookup on addresses within the host machine's network is not allowed.")
return
except ValueError:
# Check if the input is a domain name
try:
ip = ipaddress.ip_address(socket.gethostbyname(sanitizedInput))
except socket.gaierror:
await message.channel.send("Invalid IP address or domain name.")
return
command = ["whois", sanitizedInput]
output = subprocess.check_output(command).decode()
# Split the output into chunks of 2000 characters to fit in Discord messages
for chunk in [output[i:i+2000] for i in range(0, len(output), 2000)]:
await message.channel.send(chunk)
client.run('your_bot_token')