Bot developers abusing their bots popularity

Bluscream

Retired Staff
Contributor
May 8, 2015
967
934
211
Hey, i know about that since some time ago but i decided to share this cause i got a victim of them.

As you may know there are a plenty bots for Discord out in the woods, and some of them got very popular:
NJxlg8b.png


All of the listed bots can be 'rented' for free and cause of that it's very easy to set the bot up for your server. But cause of the new OAuth2 system admins don't take a closer look at the permissions they give out for bots. For example the RH1-N0 bot by SexualRhinoceros provides the following invite URL in his official documentation:
https://discordapp.com/oauth2/authorize?&client_id=170242612425392128&scope=bot&permissions=66321471
which gives the bot way more permissions then he will ever need:
QmmR1wq.png


What concerns me even more is that the bot is begging for more permissions if you take his permissions from him:
0AvdNh6.png
 

Bluscream

Retired Staff
Contributor
May 8, 2015
967
934
211
Also in popular bots we can find user blacklists that auto-ban users on every server they are on, even if the server admin is not okay with that. The only way to prevent the banning is taking the ban/kick permissions from that bots. Mostly Mods/Admins don't even recognize that someone got banned by a bot.

A example of such a blacklist can be found in the sourcecode of the RH1NO Bot:

I heard from other people that they got blacklisted from closed source bots and therefor can't join any servers that use these bots.

I personally got on such a blacklist on Boobot and RH1-N0.
 
Last edited:

floppy

Member
Mar 6, 2016
33
19
55
I heard from other people that they got blacklisted from closed source bots and therefor can't join any servers that use these bots.

Can't you just create a new Discord account? Doesn't seem that hard, as even a private browser window will allow this.


Edit: sorry, didn't look at the date...
 

Bluscream

Retired Staff
Contributor
May 8, 2015
967
934
211
Also in popular bots we can find user blacklists that auto-ban users on every server they are on, even if the server admin is not okay with that. The only way to prevent the banning is taking the ban/kick permissions from that bots. Mostly Mods/Admins don't even recognize that someone got banned by a bot.

A example of such a blacklist can be found in the sourcecode of the RH1NO Bot:

I heard from other people that they got blacklisted from closed source bots and therefor can't join any servers that use these bots.

I personally got on such a blacklist on Boobot and RH1-N0.
Btw the link to the banlist changed to https://github.com/Just-Some-Bots/ModTools/blob/master/config/globalbans.txt (Archive)
 

kalle

high minded
Contributor
Oct 28, 2015
411
253
178
Top