TweeVEBot

Security news twitter bot

Home
Projects
Security
TweeVEBot

Project Aims

Become a go to source of vulnerability updates on Twitter
Tweet out concise information from CVE databases
Have multiple different tweet formats for different vulnerabilities

Features

Gathers data from mitre JSON feeds (cvedetails.com)
Tweets one of the top 3 CVEs, with and 8+ CVSS score.
Tweets based on one of 4 rotating attack types
Types are: SQLi, Privilege Escalation, DDoS & Remote Code Execution

🤖Beep boop... I'm TweeVEBot, & you humans may not have heard this;🤖
🖥️💣but there's a dangerous vuln, that causes Denial of Service:💣🖥️

CVE ID: CVE-2019-5700
CVSS Score: 7.2 ⚠
URL: https://t.co/T2Nn77ZioS #CyberSecurity
Hosted on @googlecloud
— TweeVEBot (@tweevebot) November 15, 2020

Serverless architecture

Python code executed as GCP Cloud Function

Triggered by GCP Cloud Scheduler via Pub/Sub

Grabs twitter credentialss from GCP Secret Manager

Uses month as argument to create unique tweet
Resulting tweet

Details the most recently updated, 8+ CVSS vulnerability

1 of 4 categories. In this example, a DDoS CVE

Link to vulnerability database that was used

Puns and emojis for fun 😉