T145/black-mirror T145/black-mirror

  • Stars
    star
    191
  • Rank 202,877 (Top 4 %)
  • Language
    Shell
  • License
    GNU Affero Genera...
  • Created over 3 years ago
  • Updated 3 months ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
T145/black-mirror
github

T145

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Blacklists and whitelists built by open code, so you know what goes into them.
logo

🌓 Reflection | 💿 Redundancy | ✅ Reliability

Aiming to promote security, safety, and sanity across the internet!

humane-tech release
Made with 💖 by

🛡️ Privacy Protectors

Good causes that help secure your digital life.

💕 Companion Projects

Great projects that leverage Black Mirror's content!


NXDOMAIN scanner against Black Mirror's lists

🖋️ Manifesto

Please report any hosts that are wrongly blocked or sources that do not wholly align in an issue.

Defines the logic behind why a host is permitted or blocked. It has been written to reflect common ideologies across the blacklisting community and those specific to this project.

Complete author bias reflection is not intended, which is why it speaks from the Black Mirror person. Free thought exchange is encouraged, so feel free to open discussions about any points!

📋 Attributes

  1. Produced in builds specific to each host's syntax.
  2. Updates at 1:27 AM UTC.
  3. No excess or trailing whitespace.
  4. No lingering webscraper garbage.
  5. Lines are terminated with lf.
  6. No blank lines.
  7. No comments.

🚚 Deliverables

List Name File Content Unique Entries File Size Mirror 1 Mirror 2
BLOCK_DOMAIN Domain entries 8,203,793 181M 🔗 🔗
BLOCK_IPV4 IPv4 addresses 654,353 8.9M 🔗 🔗
BLOCK_IPV6 IPv6 addresses 3,430 90K 🔗 🔗
BLOCK_CIDR4 IPv4 CIDR blocks 278,125 1.2M 🔗 🔗
ALLOW_DOMAIN Domain entries 663,973 14M 🔗 🔗
ALLOW_IPV4 IPv4 addresses 79,968 1.1M 🔗 🔗
ALLOW_IPV6 IPv6 addresses 2,613 99K 🔗 🔗
ALLOW_CIDR4 IPv4 CIDR blocks 7,773 119K 🔗 🔗
ALLOW_CIDR6 IPv6 CIDR blocks 138,865 2.2M 🔗 🔗

Source Code

🧮 Checksum Evaluation

sha256sum CHECKSUMS.txt --strict

The output will print OK if the check was successful. Be sure to run the command in the same directory as the lists!

🐙 Fetching GitHub Releases

Provided below are some examples to fetch release artifacts leveraging the GitHub API.

Get all build artifacts

curl --proto '=https' --tlsv1.3 -H 'Accept: application/vnd.github.v3+json' -sSf https://api.github.com/repos/T145/black-mirror/releases/latest | jq -r '.assets[].browser_download_url'

Get a build artifact & its checksum

curl --proto '=https' --tlsv1.3 -H 'Accept: application/vnd.github.v3+json' -sSf https://api.github.com/repos/T145/black-mirror/releases/latest | jq -r '.assets[] | select(.name | startswith("BLOCK_DOMAIN")).browser_download_url'

Get a single build artifact

curl --proto '=https' --tlsv1.3 -H 'Accept: application/vnd.github.v3+json' -sSf https://api.github.com/repos/T145/black-mirror/releases/latest | jq -r '.assets[] | select(.name | startswith("BLOCK_DOMAIN")) | select(.name | endswith(".txt")).browser_download_url'

🐋 Docker Usage

To provide a temporary container to experiment with Black Mirror scripts and the CLI utilities it uses, run the following:

docker container run -it --rm -h black-mirror ghcr.io/t145/black-mirror

For a persistant container, use something like what's given below:

docker container run -it --name black-mirror -h black-mirror ghcr.io/t145/black-mirror

Then to access the container at a later date, run:

docker start black-mirror
docker exec -it black-mirror /bin/bash

To use the root user just append -u 0.

NOTE: Before using rkhunter, be sure to run:

rkhunter --update

🛠️ List Usage

Hosts File

mawk '{print "0.0.0.0 " $0}' BLOCK_DOMAIN.txt >>hosts
# mawk '{print ":: " $0}' BLOCK_DOMAIN.txt >>hosts
mawk '{print "0.0.0.0 " $0}' BLOCK_IPV4.txt >>hosts
mawk '{print ":: " $0}' BLOCK_IPV6.txt >>hosts

Dnsmasq

Many popular platforms such as OpenWRT, DDWRT, and Pi-hole use Dnsmasq as their choice TCP powerhouse. After inspecting many domain blocklists you'll inevitably run across a list in the dnsmasq.conf format. This list doesn't support it because you can use the addn-hosts parameter to add hosts in the list. Target a file that has the hosts in a format similar to the Hosts File format.

If you're using the RADVD daemon, prepend any listed hosts with ::. Otherwise, even if you have IPv6 support set up, prepend hosts with 0.0.0.0.

This has been tested across all the mentioned platforms using dig{6} on a small sample size and had each host null-routed successfully. DNSmasq's man page discusses configuration further, and DDWRT's ad blocking wiki page provides some examples.

Amazon EC2 DNS Resolver

Follow this guide to create a DNS server on an Amazon EC2 instance.

Pi-hole

If you'd like to update when some sources do or not extract a production build, just use the single-line list sources.pihole. Note that this list only contains Pihole-compatible sources, and not every handled source. Some manual configuration may also be required.

unbound

Similar to dnsmasq, but requires more manual configuration. Name any products as a *.conf file. Then follow Steffinstanly's instructions on how to apply blocklists.

personalDNSfilter

Use the domain list.

Adguard

Leverage the sources.adguard list or the domain list.

👨‍💻 Development

Workspace Setup

Install Docker, PNPM, and NodeJS. These can usually be installed with a popular package manager. The specific Node version used in this project is provided in .node-version, but any version over 16 should work. With Docker running in the background, execute pnpm lint to debug any changes.

🎉 Special Thanks

Stargazers

Stargazers repo roster for @T145/black-mirror

Forkers

Forkers repo roster for @T145/black-mirror

🎶 Notes

Need for speed

Some List References

Lamers Unwelcome

Interesting Oddities

Big Data Lists

Typically used by other blacklist projects as whitelists.

List Name URL
Alexa https://s3.amazonaws.com/alexa-static/top-1m.csv.zip
Umbrella https://downloads.majestic.com/majestic_million.csv
Statvoo https://statvoo.com/dl/top-1million-sites.csv.zip
OpenPageRank https://www.domcop.com/files/top/top10milliondomains.csv.zip
Quantcast https://toplists.net.in.tum.de/archive/quantcast/quantcast-top-sites-2021-06-25_0900_UTC.txt.xz
Tranco list https://tranco-list.eu/

IP Block Providers

Simply provide IP blocks for entire geographic regions.

More Repositories

1

magistics

Logistical magic!
Java
14
star
2

metal-chests

Better alternative to IronChests
Java
13
star
3

all-the-creepers

Here comes the BOOM!
Java
7
star
4

white-bear

DoH, DoT, DNSCrypt, & DoQ provider whitelists and blacklists.
4
star
5

traveling-salesman

Above-average TSP estimater w/ no strict dependencies
Java
3
star
6

actual-stellar-systems

Bringing more realism to the Stellaris experience! 🌌
Batchfile
2
star
7

cart-complete

Fit any block in a cart
Java
2
star
8

stellaris-mod-template

A template for Stellaris mods!
Batchfile
1
star
9

black-museum

Contrasts other major blacklists w/ Black Mirror
1
star
10

T145.github.io

Personal website and GitHub project showcase
HTML
1
star
11

metalhead

NXDOMAIN scanner against Black Mirror's lists
Shell
1
star
12

tbone

Shared code library for my Minecraft mods
Java
1
star
13

anipop

Short script to download the current season of anime from HorribleSubs
Python
1
star
14

callister

Transforms Black Mirror sources to an Adguard format.
1
star
15

genesis

Custom Stellaris origins, w/ some ported from older mods.
Batchfile
1
star
16

black-truffles

Snort rules organized by their applicable interfaces (i.e. WAN & LAN).
Shell
1
star