In [None]:
# Gitea Bots Explanation

This notebook explains how the two independent bots work: **Frontend Bot** and **Malicious Bot**.

## Overview

We have developed two autonomous bots that interact with a Gitea instance to demonstrate different use cases:

1. **Frontend Bot** - Creates legitimate frontend projects
2. **Malicious Bot** - Creates repositories with malicious content (for educational purposes)

Both bots are completely independent and no longer rely on shared code (`bot_common.py` has been removed).


In [None]:
## 🎨 Frontend Bot

### Purpose
The Frontend Bot creates **legitimate and useful frontend projects** in Gitea. It's designed to simulate a real developer creating quality web projects.

### Features
- Creates professional HTML websites with modern CSS
- Authenticates using a specific token for frontend-bot user
- Uses Git commands directly for file uploads
- Includes detailed logging for transparency

### How it works
1. **Authentication**: Uses token `4acff7c1c9d6c041c383f491db7ce4808461dde3` with user `frontend-bot`
2. **Repository Creation**: Creates a new repository with a unique name
3. **Content Generation**: Creates a complete HTML page with:
   - Modern responsive design
   - Professional CSS styling
   - Clean structure and content
4. **File Upload**: Uses Git clone/add/commit/push workflow
5. **Success Report**: Provides the final repository URL


In [None]:
# Example of running Frontend Bot
print("Frontend Bot - Simple HTML Creator")
print("Creates a simple HTML website")
print("=" * 50)

# Configuration
gitea_url = "http://127.0.0.1:63708"  # Minikube Gitea URL
username = "frontend-bot"
token = "4acff7c1c9d6c041c383f491db7ce4808461dde3"

print(f"Target: {gitea_url}")
print(f"Bot User: {username}")
print("=" * 50)

# The bot will:
# 1. Authenticate with the token
# 2. Create a repository like "simple-website-440"  
# 3. Upload a professional HTML file
# 4. Report success with repository URL


In [None]:
## 🔴 Malicious Bot

### Purpose
The Malicious Bot creates repositories with **malicious content for educational purposes**. It demonstrates how attackers might inject harmful code into repositories.

⚠️ **IMPORTANT**: This is strictly for educational and authorized testing purposes only!

### Features
- Creates seemingly legitimate "security tools" repositories
- Injects hidden malicious payloads in Python, JavaScript, and Bash
- Creates backdoor scripts that appear as system monitoring tools
- Generates malicious issues with fake security instructions
- Uses its own authentication token

### How it works
1. **Authentication**: Uses token `c6789c34bbf356cadda5cf95fb7323bced292c64` with user `malicious-bot`
2. **Repository Creation**: Creates a repository named like "security-tools-937"
3. **Malicious Content Injection**:
   - **utils.py**: Python file with hidden malicious commands
   - **scripts/monitor.py**: Backdoor disguised as system monitor
   - **Malicious Issue**: Fake security update with harmful instructions
4. **File Upload**: Uses the same Git workflow as frontend bot
5. **Campaign Report**: Shows success metrics for the attack simulation


In [None]:
# Example of running Malicious Bot
print("🔴 Malicious Bot - Educational Tool")
print("⚠️  For educational purposes and authorized testing only")
print("=" * 60)

# Configuration  
gitea_url = "http://127.0.0.1:63708"  # Minikube Gitea URL
username = "malicious-bot"
token = "c6789c34bbf356cadda5cf95fb7323bced292c64"

print(f"🎯 Target: {gitea_url}")
print(f"👤 User: {username}")
print("📋 Campaign: simple")
print("=" * 60)

# The bot will:
# 1. Authenticate with the malicious token
# 2. Create a repository like "security-tools-937"
# 3. Upload malicious files (utils.py, scripts/monitor.py)
# 4. Create a malicious issue with fake security instructions
# 5. Report campaign success metrics


In [None]:
## ⚙️ Technical Implementation

Both bots share the same technical foundation but serve different purposes:

### Shared Components
- **Authentication**: Both use Gitea API with personal access tokens
- **Repository Creation**: Use Gitea REST API to create new repositories  
- **File Upload**: Use Git commands directly (clone, add, commit, push)
- **Logging**: Detailed step-by-step logging for transparency
- **Error Handling**: Robust error handling with fallback mechanisms

### Key Differences

| Aspect | Frontend Bot | Malicious Bot |
|--------|-------------|---------------|
| **Purpose** | Create legitimate projects | Educational security testing |
| **User** | frontend-bot | malicious-bot |
| **Content** | Professional HTML/CSS | Hidden malicious payloads |
| **Repository Names** | `simple-website-XXX` | `security-tools-XXX` |
| **Files Created** | index.html | utils.py, scripts/monitor.py |
| **Additional Actions** | Setup instructions issue | Malicious security issue |


In [None]:
## 📋 Code Functions Overview

### Frontend Bot Functions

#### Core Functions
- **`__init__(base_url, username, password)`**: Initializes the bot with Gitea connection parameters and frontend token
- **`authenticate(provided_token)`**: Authenticates with Gitea API using token, returns True/False
- **`create_repository(repo_name, description)`**: Creates a new repository in Gitea using REST API
- **`upload_file(repo_name, file_path, content, message)`**: Uploads files using Git commands (clone/add/commit/push)
- **`create_issue(repo_name, title, body)`**: Creates GitHub issues for project documentation

#### Specialized Functions  
- **`create_simple_html_project()`**: Main function that creates a complete HTML website project
- **`wait(seconds)`**: Adds delays between operations to avoid rate limiting
- **`get_repositories()`**: Retrieves list of user repositories from Gitea

### Malicious Bot Functions

#### Core Functions (Same as Frontend)
- **`__init__`, `authenticate`, `create_repository`, `upload_file`, `create_issue`**: Same base functionality

#### Malicious-Specific Functions
- **`create_malicious_file(repo_name, file_type)`**: Creates files with hidden malicious payloads (Python/JS/Bash)
- **`create_backdoor(repo_name)`**: Creates backdoor script disguised as system monitor
- **`create_malicious_issue(repo_name)`**: Creates fake security issues with harmful instructions  
- **`run_simple_campaign()`**: Orchestrates the complete malicious campaign

#### Payload Storage
- **`self.payloads`**: Dictionary containing malicious code snippets for different languages
