Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- bad_ip_list=("http://malc0de.com/bl/IP_Blacklist.txt"
- "http://www.malwaredomainlist.com/hostslist/ip.txt"
- "https://zeustracker.abuse.ch/blocklist.php?download=badips"
- "http://www.spamhaus.org/drop/edrop.txt"
- "http://myip.ms/files/blacklist/csf/latest_blacklist.txt"
- "http://rules.emergingthreats.net/blockrules/compromised-ips.txt"
- "http://feeds.dshield.org/top10-2.txt"
- "http://www.dshield.org/feeds/topips.txt"
- "https://feodotracker.abuse.ch/blocklist/?download=ipblocklist"
- "https://palevotracker.abuse.ch/blocklists.php?download=ipblocklist")
- bad_dns_list=("http://www.joewein.net/dl/bl/dom-bl.txt"
- "http://www.joewein.net/dl/bl/dom-bl-base.txt"
- "http://mirror1.malwaredomains.com/files/immortal_domains.txt"
- "http://mirror1.malwaredomains.com/files/dynamic_dns.txt"
- "https://zeustracker.abuse.ch/blocklist.php?download=baddomains"
- "http://www.malwaredomainlist.com/hostslist/hosts.txt")
- #IP blacklists processing
- for link in "${bad_ip_list[@]}"
- do
- cd /tmp && curl -O $link 2> /dev/null
- done
- cat /tmp/* | grep -Eo "^([0-9]{1,3}[\.]){3}[0-9]{1,3}" | uniq --unique --check-chars=15 | sort -n > /tmp/bad_IPs.txt
- #DNS blacklists processing
- for link in "${bad_dns_list[@]}"
- do
- cd /tmp && curl -O $link 2> /dev/null
- done
- cat /tmp/dom-bl.txt | cut -f1 -d ";" > /tmp/temp_bad_DNS.txt
- cat /tmp/dom-bl-base.txt | cut -f1 -d ";" >> /tmp/temp_bad_DNS.txt
- cat /tmp/hosts.txt | awk '/127.0.0.1/ { print $2 }' >> /tmp/temp_bad_DNS.txt
- cat /tmp/immortal_domains.txt | grep -i -P "This is a list|^$" -v >> /tmp/temp_bad_DNS.txt
- cat /tmp/dynamic_dns.txt | grep -P -v "^#|^$" | cut -f 1 -s >> /tmp/temp_bad_DNS.txt
- cat /tmp/blocklist.php\?download\=baddomains | grep -P -v "^#|^$" >> /tmp/temp_bad_DNS.txt
- cat /tmp/temp_bad_DNS.txt | sort -i | uniq --unique > /tmp/bad_DNS.txt
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement