Add custom Discord notification by dirtboll · Pull Request #686 · OpticFusion1/MCAntiMalware

dirtboll · 2023-09-03T17:06:26Z

This adds the ability to provide Discord notification template using JSON via discord_message_template environment variable. Example inside a bash script:

set -a
discord_webhook=https://discord.com/api/webhooks/blablabla
# Generated from https://discohook.org/
read -r -d '' discord_message_template <<- 'EOF'
  {
    "content": null,
    "embeds": [
      {
        "title": "<a:furnace_angry:839235629454983218> Detected Malware `${malware-family}`",
        "color": 16711680,
        "fields": [
          {
            "name": "Server",
            "value": "My Infected Server",
            "inline": true
          },
          {
            "name": "File",
            "value": "`${file-path}`",
            "inline": true
          },
          {
            "name": "Malware type",
            "value": "[${malware-platform}.${malware-type}.${malware-family}.${malware-variant}](https://www.google.com/search?q=${malware-platform}+${malware-type}+${malware-family}+${malware-variant})"
          },
          {
            "name": "Class path",
            "value": "`${malware-class-path}`",
            "inline": true
          },
          {
            "name": "[Line] SourceFile",
            "value": "**[**${malware-line-number}**]** `${malware-source-path}`"
          }
        ]
      }
    ],
    "username": "Minecraft Malware Scanner",
    "avatar_url": "https://i.imgur.com/i9GSb45.png",
    "attachments": []
  }
EOF
java -jar MCAntiMalware.jar --notify discord --singleScan true

Available format parameters:

Parameter	Replaced with
${file-path}	Path to the infected file
${malware-platform}	Malware platform
${malware-type}	Malware type
${malware-family}	Malware family
${malware-variant}	Malware variant
${malware-class-path}	Class path containing the malware
${malware-source-path}	Path to the source code containing the malware
${malware-line-number}	Line number of the source code

If not using template, you can still customize username and avatar URL using discord_username and discord_avatar_url environment variable.

This adds `discord_username` and `discord_avatar_url` environment variables for custom username and avatar URL. This also enables the ability to provide Discord message template in JSON format using `discord_message_template` environment variable. The provided template can contain format parameters that will be replaced to the scan result, such as `${file-path}`, `${malware-platform}`, `${malware-type}`, `${malware-family}`, `${malware-variant}`, `${malware-class-path}`, `${malware-source-path}`, and `${malware-line-number}`.

OpticFusion1 · 2023-09-09T19:34:49Z

+    public static String format(String template, Map<String, Object> parameters) {
+        StringBuilder newTemplate = new StringBuilder(template);
+        List<Object> valueList = new ArrayList<>();
+        Matcher matcher = Pattern.compile("[$][{]([\\w-_]+)}").matcher(template);


There is no reason to have to re-compile this on every method call, convert the Pattern to a CONSTANT.

Should be resolved.

dirtboll · 2023-09-10T17:42:21Z

Sorry, I refactored it a bit. What do you think?

dirtboll changed the title ~~Add custom discord notification~~ Add custom Discord notification Sep 3, 2023

OpticFusion1 requested changes Sep 9, 2023

View reviewed changes

refactor: make format pattern compiled

3165094

dirtboll requested a review from OpticFusion1 September 10, 2023 17:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Add custom Discord notification#686

Add custom Discord notification#686
dirtboll wants to merge 2 commits into
OpticFusion1:masterfrom
dirtboll:master

dirtboll commented Sep 3, 2023

Uh oh!

OpticFusion1 Sep 9, 2023

Uh oh!

dirtboll Sep 10, 2023

Uh oh!

dirtboll commented Sep 10, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Uh oh!

Conversation

dirtboll commented Sep 3, 2023

Uh oh!

OpticFusion1 Sep 9, 2023

Choose a reason for hiding this comment

Uh oh!

dirtboll Sep 10, 2023

Choose a reason for hiding this comment

Uh oh!

dirtboll commented Sep 10, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants