## https://sploitus.com/exploit?id=CE4D8CD6-3A45-5B98-B4C9-06630AB2BC23
a bot to scan a channel or whole server for image attachments or urls that might be pixel screenshots, downloads them and checks them for CVE-2023-21036. if it thinks they are it tries to delete the attachment/message. at last it will give out a small statistic with links to messages that it thinks are affected but couldnt delete (e.g. due to permissions)
a dry run will scan for vulnerable images:
a non dry run will attempt to delete them right away:
for detection this uses a script by retr0id <https://gist.github.com/DavidBuchanan314/93de9d07f7fab494bcdf17c2bd6cef02> with slight adaptations by <https://github.com/infobyte/CVE-2023-21036>
this needs the `message_content` intent and a `DISCORD_TOKEN` environment variable
# License
im not sure about the license on the det.py script but `cog/acropolypse.py` and `bot.py` are released into the public domain so feel free to use them in your own bot or tweak them to your needs
of course there is no warranty whatsoever