bind-notify/bind-notify.py at main · aelth/bind-notify · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
#!/usr/bin/env python3

import json
import os
import re
import sys
import telegram_send
import time

from pygtail import Pygtail
from configparser import ConfigParser

def print_err(msg):
    print('\033[91m[-] ' + msg + '\033[0m')


def print_warn(msg):
    print('\033[93m[!] ' + msg + '\033[0m')


def print_succ(msg):
    print('\033[92m' + msg + '\033[0m')


# influenced by ARTLAS: https://github.com/mthbernardes/ARTLAS
class Notifier(object):
    def __init__(self, config_file):
        if not os.path.exists(config_file):
            print_err(f'Config file {config_file} does not exist! Please check the path to configuration file...')
            sys.exit(1)

        print_succ(f'Reading config file {config_file}...')
        self.parse_config(config_file)
        print_succ(f'Configuration file parsed successfully!')

    def parse_config(self, config_file):
        config = ConfigParser()
        config.read(config_file)

        self.conf = dict()
        # general settings
        self.conf['logs'] = config.get('General', 'logs').split(',')
        self.conf['sleep'] = int(config.get('General', 'sleep'))

        for log in self.conf['logs']:
            section_name = 'Log-' + log
            if not config.has_section(section_name):
                print_warn(f'Section {section_name} does not exist in config file! Please check the syntax...')
                continue

            self.conf['file-' + log] = config.get(section_name, 'log')
            self.conf['rex-' + log] = re.compile(config.get(section_name, 'rex'))

        # telegram settings
        self.conf['telegram_config'] = config.get('Telegram', 'conf')

    def start(self):
        # run in endless loop, waiting for n seconds
        while True:
            try:
                for log in self.conf['logs']:
                    for line in Pygtail(self.conf['file-' + log], read_from_end=True):
                        denied_axfr = self.conf['rex-' + log].search(line)
                        if denied_axfr:
                            ip = denied_axfr[1]
                            zone = denied_axfr[2]
                            print(f'Denied or bad AXFR for {zone}</b> from {ip}!')

                            # send telegram notification
                            telegram_send.send(conf=self.conf['telegram_config'], parse_mode='html', messages=[f'⚠️ Denied or bad AXFR for <b>{zone}</b> from <b>{ip}</b>!'])

                time.sleep(self.conf['sleep'])

            except KeyboardInterrupt:
                print_warn('Received CTRL+C, exiting...')
                return
            except Exception as e:
                print_err(f'Error while running the program: {e}')
                return


if __name__ == '__main__':
	notifier = Notifier('./settings.conf')
	notifier.start()