mirror of
https://github.com/fabriziosalmi/patterns.git
synced 2025-12-17 17:55:48 +00:00
5cf6e75096
feat: Integrate tqdm for progress tracking during bot list fetching feat: Add regex filters to exclude IP addresses and domains from bot lists refactor: Remove IP and domain-specific sources from BOT_LIST_SOURCES refactor: Update parse_bot_list to skip lines matching IP or domain regex refactor: Improve logging for better debugging and clarity refactor: Use ThreadPoolExecutor with tqdm for concurrent fetching with progress docs: Add comments and docstrings for better code understanding chore: Ensure output directories exist before generating WAF configurations
209 lines
7.2 KiB
Python
209 lines
7.2 KiB
Python
import requests
|
|
import os
|
|
import logging
|
|
import json
|
|
import time
|
|
from pathlib import Path
|
|
from concurrent.futures import ThreadPoolExecutor, as_completed
|
|
import random
|
|
import re
|
|
from tqdm import tqdm # Import tqdm for progress bar
|
|
|
|
# Logging setup
|
|
logging.basicConfig(level=logging.INFO, format="%(asctime)s - %(levelname)s - %(message)s")
|
|
|
|
# Constants and Configuration
|
|
OUTPUT_DIRS = {
|
|
"nginx": "waf_patterns/nginx/",
|
|
"apache": "waf_patterns/apache/",
|
|
"traefik": "waf_patterns/traefik/",
|
|
"haproxy": "waf_patterns/haproxy/"
|
|
}
|
|
|
|
# Updated list of bot list sources
|
|
BOT_LIST_SOURCES = [
|
|
"https://raw.githubusercontent.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker/master/_generator_lists/bad-user-agents.list",
|
|
"https://raw.githubusercontent.com/JayBizzle/Crawler-Detect/master/raw/Crawlers.txt",
|
|
"https://raw.githubusercontent.com/piwik/referrer-spam-blacklist/master/spammers.txt",
|
|
"https://raw.githubusercontent.com/Stevie-Ray/referrer-spam-blocker/master/src/hosts.txt",
|
|
"https://raw.githubusercontent.com/danielmiessler/SecLists/master/Discovery/Web-Content/bad-user-agents.txt"
|
|
]
|
|
|
|
RATE_LIMIT_DELAY = 600
|
|
RETRY_DELAY = 5
|
|
MAX_RETRIES = 3
|
|
EXPONENTIAL_BACKOFF = True
|
|
BACKOFF_MULTIPLIER = 2
|
|
MAX_WORKERS = 4
|
|
GITHUB_TOKEN = os.getenv("GITHUB_TOKEN")
|
|
|
|
# Regex to detect IP addresses and domains
|
|
IP_REGEX = re.compile(r"\b\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}\b")
|
|
DOMAIN_REGEX = re.compile(r"\b([a-zA-Z0-9-]+\.)+[a-zA-Z]{2,}\b")
|
|
|
|
|
|
def fetch_with_retries(url: str) -> list:
|
|
"""
|
|
Fetch bot patterns from a URL with retries and rate-limiting handling.
|
|
"""
|
|
retries = 0
|
|
headers = {}
|
|
|
|
if GITHUB_TOKEN:
|
|
headers['Authorization'] = f'token {GITHUB_TOKEN}'
|
|
logging.info(f"Using GitHub token for {url}")
|
|
|
|
while retries < MAX_RETRIES:
|
|
try:
|
|
response = requests.get(url, headers=headers, timeout=10)
|
|
if response.status_code == 200:
|
|
logging.info(f"Fetched from {url}")
|
|
return parse_bot_list(url, response)
|
|
|
|
if response.status_code == 403 and 'X-RateLimit-Remaining' in response.headers:
|
|
reset_time = int(response.headers['X-RateLimit-Reset'])
|
|
wait_time = max(reset_time - int(time.time()), RATE_LIMIT_DELAY)
|
|
logging.warning(f"Rate limit exceeded for {url}. Retrying in {wait_time} seconds...")
|
|
time.sleep(wait_time)
|
|
else:
|
|
jitter = random.uniform(1, 3)
|
|
wait_time = (RETRY_DELAY * (BACKOFF_MULTIPLIER ** retries) if EXPONENTIAL_BACKOFF else RETRY_DELAY) + jitter
|
|
logging.warning(f"Retrying {url}... ({retries + 1}/{MAX_RETRIES}) in {wait_time:.2f} seconds.")
|
|
time.sleep(wait_time)
|
|
retries += 1
|
|
except requests.RequestException as e:
|
|
logging.error(f"Error fetching {url}: {e}")
|
|
retries += 1
|
|
|
|
logging.error(f"Failed to fetch {url} after {MAX_RETRIES} retries.")
|
|
return []
|
|
|
|
|
|
def parse_bot_list(url: str, response: requests.Response) -> list:
|
|
"""
|
|
Parse bot patterns from the fetched response (JSON or plain text).
|
|
"""
|
|
bot_patterns = set()
|
|
try:
|
|
if url.endswith(".json"):
|
|
json_data = response.json()
|
|
if isinstance(json_data, list):
|
|
for entry in json_data:
|
|
user_agent = entry.get('pattern') or entry.get('ua', '')
|
|
if user_agent and not user_agent.startswith("#"):
|
|
bot_patterns.add(user_agent)
|
|
elif isinstance(json_data, dict):
|
|
for entry in json_data.get('test_cases', []):
|
|
user_agent = entry.get('user_agent_string', '')
|
|
if user_agent and not user_agent.startswith("#"):
|
|
bot_patterns.add(user_agent)
|
|
else:
|
|
for line in response.text.splitlines():
|
|
# Exclude comments, empty lines, IPs, and domains
|
|
if line and not line.startswith("#") and len(line) > 3:
|
|
if not IP_REGEX.search(line) and not DOMAIN_REGEX.search(line):
|
|
bot_patterns.add(line)
|
|
except (ValueError, json.JSONDecodeError) as e:
|
|
logging.warning(f"Error parsing {url}: {e}")
|
|
|
|
return list(bot_patterns)
|
|
|
|
|
|
def fetch_bot_list():
|
|
"""
|
|
Fetch bot patterns from all sources using a thread pool.
|
|
"""
|
|
bot_patterns = set()
|
|
|
|
with ThreadPoolExecutor(max_workers=MAX_WORKERS) as executor:
|
|
# Create a dictionary of futures to URLs
|
|
future_to_url = {executor.submit(fetch_with_retries, url): url for url in BOT_LIST_SOURCES}
|
|
|
|
# Use tqdm to show progress
|
|
for future in tqdm(as_completed(future_to_url), total=len(BOT_LIST_SOURCES), desc="Fetching bot lists"):
|
|
result = future.result()
|
|
bot_patterns.update(result)
|
|
|
|
if not bot_patterns:
|
|
logging.error("❌ No bots were fetched from any source. Exiting...")
|
|
exit(1)
|
|
|
|
logging.info(f"✅ Total unique bots collected: {len(bot_patterns)}")
|
|
return sorted(bot_patterns)
|
|
|
|
|
|
def write_to_file(path: Path, content: str):
|
|
"""
|
|
Write content to a file at the specified path.
|
|
"""
|
|
try:
|
|
with path.open("w") as f:
|
|
f.write(content)
|
|
logging.info(f"Generated file: {path}")
|
|
except IOError as e:
|
|
logging.error(f"Failed to write to {path}: {e}")
|
|
|
|
|
|
def generate_nginx_conf(bots):
|
|
"""
|
|
Generate Nginx WAF configuration for blocking bots.
|
|
"""
|
|
path = Path(OUTPUT_DIRS['nginx'], "bots.conf")
|
|
content = "map $http_user_agent $bad_bot {\n"
|
|
for bot in bots:
|
|
content += f' "~*{bot}" 1;\n'
|
|
content += " default 0;\n}\n"
|
|
write_to_file(path, content)
|
|
|
|
|
|
def generate_apache_conf(bots):
|
|
"""
|
|
Generate Apache WAF configuration for blocking bots.
|
|
"""
|
|
path = Path(OUTPUT_DIRS['apache'], "bots.conf")
|
|
content = "SecRuleEngine On\n"
|
|
for bot in bots:
|
|
content += f'SecRule REQUEST_HEADERS:User-Agent "@contains {bot}" "id:3000,phase:1,deny,status:403"\n'
|
|
write_to_file(path, content)
|
|
|
|
|
|
def generate_traefik_conf(bots):
|
|
"""
|
|
Generate Traefik WAF configuration for blocking bots.
|
|
"""
|
|
path = Path(OUTPUT_DIRS['traefik'], "bots.toml")
|
|
content = "[http.middlewares]\n[http.middlewares.bad_bot_block]\n [http.middlewares.bad_bot_block.plugin.badbot]\n userAgent = [\n"
|
|
for bot in bots:
|
|
content += f' "{bot}",\n'
|
|
content += " ]\n"
|
|
write_to_file(path, content)
|
|
|
|
|
|
def generate_haproxy_conf(bots):
|
|
"""
|
|
Generate HAProxy WAF configuration for blocking bots.
|
|
"""
|
|
path = Path(OUTPUT_DIRS['haproxy'], "bots.acl")
|
|
content = "# HAProxy WAF - Bad Bot Blocker\n"
|
|
for bot in bots:
|
|
content += f'acl bad_bot hdr_sub(User-Agent) -i {bot}\n'
|
|
content += "http-request deny if bad_bot\n"
|
|
write_to_file(path, content)
|
|
|
|
|
|
if __name__ == "__main__":
|
|
# Ensure output directories exist
|
|
for output_dir in OUTPUT_DIRS.values():
|
|
Path(output_dir).mkdir(parents=True, exist_ok=True)
|
|
|
|
# Fetch bot patterns
|
|
bots = fetch_bot_list()
|
|
|
|
# Generate WAF configurations
|
|
generate_nginx_conf(bots)
|
|
generate_apache_conf(bots)
|
|
generate_traefik_conf(bots)
|
|
generate_haproxy_conf(bots)
|
|
|
|
logging.info("[✔] Bot blocking configurations generated for all platforms.")
|