update gitignore

Author: miroreo

.gitignore

@@ -0,0 +1,17 @@
+/scripts/initgit.sh
+# Binaries for programs and plugins
+*.exe
+*.exe~
+*.dll
+*.so
+*.dylib
+main
+
+# Test binary, built with `go test -c`
+*.test
+
+# Output of the go coverage tool, specifically when used with LiteIDE
+*.out
+
+# Dependency directories (remove the comment below to include it)
+# vendor/

.replit

@@ -0,0 +1,2 @@
+run="go build && ./main"
+onBoot="./scripts/initgit.sh"

github.go

@@ -0,0 +1,48 @@
+package main
+
+import (
+	"github.com/google/go-github/github"
+	"github.com/bradleyfalzon/ghinstallation"
+	"net/http"
+	"os"
+	"context"
+	// "strconv"
+	"fmt"
+	"time"
+)
+
+func githubInit() *github.Client {
+	// Wrap the shared transport for use with the integration ID 1 authenticating with installation ID 99.
+	itr, err := ghinstallation.New(http.DefaultTransport, 115168, 16900202, []byte(os.Getenv("GITHUB_PRIVATE_KEY")))
+	if err != nil {
+		handleError(err)
+	}
+	fmt.Println(itr.BaseURL)
+	client := github.NewClient(&http.Client{Transport: itr})
+	return client
+}
+
+func pushToken(client *github.Client, message string, token string) error {
+	committerName := "Token Scanner Bot"
+	committerEmail := "[email protected]"
+	commitMessage := "Push token from message " + message
+	contResp, _, err := client.Repositories.CreateFile(context.Background(), "RoBlockHead", "TokenDisabler", "tokens/" + message + ".txt", &github.RepositoryContentFileOptions{
+		Content: []byte(fmt.Sprintf("Hey there, this file was created automatically because a bot found your token in public. By creating this file, the Discord bots will immediately reset the token.\nHopefully, we caught it in time to make sure that you weren't compromised.\nThis is a dangerous thing to leak, as your bot can be controlled by anyone if they have the token! Please keep your token safe. \nReporter: %s\nTime Detected: %s\n\n%s", "Token Scanner Bot (replit/@RoBlockHead)", (time.Now()).String, token)),
+		Message: &commitMessage,
+		Author: &github.CommitAuthor{
+			Name: &committerName,
+			Email: &committerEmail,
+		},
+		Committer: &github.CommitAuthor{
+			Name: &committerName,
+			Email: &committerEmail,
+		},
+	})
+	if err != nil{
+		fmt.Println(err)
+		return err
+	} else {
+		fmt.Printf("Token Pushed: %v\n", contResp.Commit.SHA)
+		return nil
+	}
+}

go.mod

@@ -0,0 +1,9 @@
+module main
+
+go 1.14
+
+require (
+	github.com/bradleyfalzon/ghinstallation v1.1.1
+	github.com/bwmarrin/discordgo v0.23.2
+	github.com/google/go-github v17.0.0+incompatible
+)

go.sum

@@ -0,0 +1,25 @@
+github.com/bradleyfalzon/ghinstallation v1.1.1 h1:pmBXkxgM1WeF8QYvDLT5kuQiHMcmf+X015GI0KM/E3I=
+github.com/bradleyfalzon/ghinstallation v1.1.1/go.mod h1:vyCmHTciHx/uuyN82Zc3rXN3X2KTK8nUTCrTMwAhcug=
+github.com/bwmarrin/discordgo v0.23.2 h1:BzrtTktixGHIu9Tt7dEE6diysEF9HWnXeHuoJEt2fH4=
+github.com/bwmarrin/discordgo v0.23.2/go.mod h1:c1WtWUGN6nREDmzIpyTp/iD3VYt4Fpx+bVyfBG7JE+M=
+github.com/dgrijalva/jwt-go v3.2.0+incompatible h1:7qlOGliEKZXTDg6OTjfoBKDXWrumCAMpl/TFQ4/5kLM=
+github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ=
+github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/google/go-github v17.0.0+incompatible h1:N0LgJ1j65A7kfXrZnUDaYCs/Sf4rEjNlfyDHW9dolSY=
+github.com/google/go-github v17.0.0+incompatible/go.mod h1:zLgOLi98H3fifZn+44m+umXrS52loVEgC2AApnigrVQ=
+github.com/google/go-github/v29 v29.0.2 h1:opYN6Wc7DOz7Ku3Oh4l7prmkOMwEcQxpFtxdU8N8Pts=
+github.com/google/go-github/v29 v29.0.2/go.mod h1:CHKiKKPHJ0REzfwc14QMklvtHwCveD0PxlMjLlzAM5E=
+github.com/google/go-querystring v1.0.0 h1:Xkwi/a1rcvNg1PPYe5vI8GbeBY/jrVuDX5ASuANWTrk=
+github.com/google/go-querystring v1.0.0/go.mod h1:odCYkC5MyYFN7vkCjXpyrEuKhc/BUO6wN/zVPAxq5ck=
+github.com/gorilla/websocket v1.4.0 h1:WDFjx/TMzVgy9VdMMQi2K2Emtwi2QcUQsztZ/zLaH/Q=
+github.com/gorilla/websocket v1.4.0/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
+golang.org/x/crypto v0.0.0-20181030102418-4d3f4d9ffa16 h1:y6ce7gCWtnH+m3dCjzQ1PCuwl28DDIc3VNnvY29DlIA=
+golang.org/x/crypto v0.0.0-20181030102418-4d3f4d9ffa16/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2 h1:VklqNMn3ovrHsnt90PveolxSbWFaJdECFbxSq0Mqo2M=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=

main.go

@@ -0,0 +1,142 @@
+package main
+
+import (
+	"fmt"
+	"regexp"
+	"github.com/bwmarrin/discordgo"
+	"os"
+	"os/signal"
+	"syscall"
+	"strings"
+	// "github.com/google/go-github/github"
+	// "net/http"
+)
+func main() {
+	
+	discord, err := discordgo.New("Bot " + os.Getenv("DISCORD_SECRET"), )
+	if err != nil {
+		fmt.Println("Error while connecting to discord: ", err)
+		return
+	}
+	discord.Identify.Properties.Browser = "Discord iOS"
+	discord.AddHandler(messageCreateHandler)
+	discord.AddHandler(connectHandler)
+	discord.Identify.Intents = discordgo.IntentsGuildMessages
+
+	// Open a websocket connection to Discord and begin listening.
+	err = discord.Open()
+	if err != nil {
+		fmt.Println("error opening connection,", err)
+		return
+	}
+
+	// Wait here until CTRL-C or other term signal is received.
+	fmt.Println("Bot is now running.  Press CTRL-C to exit.")
+	sc := make(chan os.Signal, 1)
+	signal.Notify(sc, syscall.SIGINT, syscall.SIGTERM, os.Interrupt, os.Kill)
+	<-sc
+
+	// Cleanly close down the Discord session.
+	discord.Close()
+	
+}
+
+// runs on connection to Discord
+func connectHandler(s *discordgo.Session, c *discordgo.Connect) {
+	s.UpdateGameStatus(0, "token watcher 2021")
+	s.UpdateStatusComplex(discordgo.UpdateStatusData{
+		Activities: []*discordgo.Activity{&discordgo.Activity{
+			Name: "for tokens ts$help",
+			Type: 3,
+			URL: "https://replit.com/@RoBlockHead",
+		}},
+	})
+}
+
+
+func messageCreateHandler(s *discordgo.Session, m *discordgo.MessageCreate) {
+	// git
+	content := m.Content
+	if len(m.Embeds) > 0 {
+		for _, em := range m.Embeds {
+			content += fmt.Sprint(em)
+		}
+	}
+	if strings.HasPrefix(m.Message.Content, "ts$"){
+		commandHandler(s, m)
+	}	else {
+		tokens := findTokens(content)
+		if(len(tokens) > 0){
+			formattedTokens := ""
+			for _, tok := range tokens {
+				formattedTokens += tok + "\n"
+			}
+			fmt.Println(formattedTokens)
+			err := pushToken(githubInit(), m.ID, formattedTokens)
+			if err != nil {
+				s.ChannelMessageSendComplex(m.ChannelID, &discordgo.MessageSend{
+					Content: "Hey! You leaked a token! I ran into an error while trying to reset it, so please reset it!",
+					Reference: &discordgo.MessageReference{
+						MessageID: m.ID,
+						ChannelID: m.ChannelID,
+						GuildID: m.GuildID,
+					},
+				})
+			} else{
+				_, err = s.ChannelMessageSendComplex(m.ChannelID, &discordgo.MessageSend{
+					Content: "Hey! You leaked a token! Don't worry though, as I've had it reset!",
+					Reference: &discordgo.MessageReference{
+						MessageID: m.ID,
+						ChannelID: m.ChannelID,
+						GuildID: m.GuildID,
+					},
+				})
+				if err != nil {
+					fmt.Println(err)
+				}
+			}
+		}
+	}
+	if m.Author.ID == s.State.User.ID {
+		return
+	}
+}
+
+func commandHandler(s *discordgo.Session, m *discordgo.MessageCreate) {
+	command := m.Content[3:]
+	fmt.Printf("Command %v run\n", command)
+	if strings.HasPrefix(command, "help") {
+
+		s.ChannelMessageSendEmbed(m.ChannelID, &discordgo.MessageEmbed{
+			Title: "Token Scanner Help",
+			Description: "Hi! I'm Token Scanner, a bot made to protect your Discord tokens! If you accidentally send a token in the chat, I'll make sure to reset it so that you don't have to worry about people using it for evil!",
+			Color: 4449000,
+			Footer: &discordgo.MessageEmbedFooter{
+				IconURL: "https://cdn.discordapp.com/avatars/156126755646734336/5179ad095e5ad4a07a8f5b3c32c57375.png",
+				Text: "Token Scanner written by @miro#7551",
+			},
+			Fields: []*discordgo.MessageEmbedField{
+				&discordgo.MessageEmbedField{
+					Name: "How do you detect tokens?",
+					Inline: true,
+					Value: "I use Regular Expressions (regex) to detect the format of a Discord token. If I find a match to this format, I have the token reset!",
+				},
+				&discordgo.MessageEmbedField{
+					Name: "How do you reset tokens?",
+					Inline: true,
+					Value: "Token resetting is done via GitHub Secret Scanning. With GitHub Secret Scanning, we can just send your token up to GitHub and it will be caught by automated systems designed to find tokens. Once it's found, it's sent to Discord to be reset.",
+				},
+				&discordgo.MessageEmbedField{
+					Name: "My Code",
+					Inline: true,
+					Value: "https://replit.com/@RoBlockHead/token-go",
+				},
+			},
+		})
+	}
+}
+
+func findTokens(content string) []string {
+	re := regexp.MustCompile(`[M-Z][A-Za-z\d]{23}\.[\w-]{6}\.[\w-]{27}`)
+	return re.FindAllString(content, -1)
+}

scripts/initgit.template.sh

@@ -0,0 +1,2 @@
+git config user.name First Last
+git config user.email [email protected]

util.go

@@ -0,0 +1,7 @@
+package main
+
+import "fmt"
+
+func handleError(err error) {
+	fmt.Errorf("err: ", err)
+}