benricheson101 / anti-phishing-bot Goto Github PK
View Code? Open in Web Editor NEWDiscord bot for deleting Steam/Discord phishing links.
License: MIT License
Discord bot for deleting Steam/Discord phishing links.
License: MIT License
if you don't mind, I suggest that the reply message from Fish ๐ in the logs channel looks like this. ๐
๐จ Phishing URL sent by @invalid-user
Username: username#0000 User ID: 123456789012345678 Actions: DELETE, KICK URL: phishing.link
thanks. ๐
Hash the description field of the embed structure of a message posted w/ a known phishing link in its content in a channel that embeds links and then store it in the database.
Hash and check the description field of the embed structure of all messages w/o a known phishing link posted in a channel that embeds links against the database for a matching description created by discord.
When matched handle message as known phishing link and add the newly detected link to the list.
You have to notify the user before they get kicked or banned, or else the bot will most likely not be able to dm them.
This would be really amazing if we could send the user a configurable message such as "you have been caught, please reset your password asap. If you wanna get unbanned ban appeal here at xyz"
Check embed contents such as URL, description, title, etc. for phishing links
Currently if you have delete on and the action is set to ban the delete will fail since ban's automatically delete messages sent in the last 24h. A check should be implemented where if the action is ban and delete is on, the delete function will not execute.
Current Behaviour
The bot requires the "manage server" permission to configure it.
Suggested Behaviour
You can set which role can configure the bot. For this a command like /config set manager-role:<role name>
would be useful.
Regex is bad, please fix
The api gives a 404 when self hosting
That would be good, if for example it is used for a report / ticket channel, so users reporting the link don't get bonked there
Maybe log the full url in the log channel, so ir is easier to report the domain, because some domains already display a white page on root and only the subdomain / phishing link will open the phishing site.
Shouldn't be a difficult change but i am already annoying you too much i guess :)
Mute role should be sticky incase another bot is not used to enforce this. Also need away to unmute members if sticky mute is implemented.
Switch mute action to the new Discord Timeouts feature
When using /lookup
the output can be a bit confusing if you manage to find a link that is in the database and its your first time using that command
I suggest using embeds with a clearer output
Here's a little mock-up I made
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.