RepoTele: Leveraging Yara Rules to Hunt for Abused Telegram Accounts

RepoTele – Hunting Abused Telegram Accounts

The following is a part of my talk called “Leveraging Yara Rules to Hunt for Abused Telegram Accounts”, that script is the second step in my research to hunt for malicious Telegram accounts using Telethon. To perform its activity, the script gets a config file with Phone Number, Telegram API ID, and HASH which you can create through the Telegram API website. The next mandatory step is to input the script with a list of Telegram Accounts to scan.

Prerequisites

• Python3
• Telethon
• Telegram API

Install

1. Clone the project: git clone https://github.com/3pun0x/RepoTele.git
2. Add Telethon library
3. Get your Telegram api_id and api_hash through Telegram API website
4. Create config file in CSV format by order of “[phoneNum],[api_id],[api_hash]”
5. Create a TXT file named “file_telegram_names.txt” with the list of Telegram accounts to scan
6. Execute the script using Python3
   Python3 RepoTele.py
7. Import the ‘output.csv’ to Google Sheets to read the file clearly.

Copyright © 2019 Asaf Aprozper

Source: https://github.com/3pun0x/