opensquat
StalkPhish
opensquat | StalkPhish | |
---|---|---|
5 | 3 | |
649 | 598 | |
- | - | |
6.1 | 2.8 | |
3 months ago | about 2 months ago | |
Python | Python | |
GNU General Public License v3.0 only | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
opensquat
-
Have I Been Squatted?
A different solution that runs locally is opensquat.
https://github.com/atenreiro/opensquat
- OpenSquat
- How to find a similar looking domains
- Have I Been Sqautted – free DNS typosquatting platform
- The openSquat is an opensource tool for detecting phishing domains and domain squatting. Supports multiple features such as permutations such as homograph attack, typosquatting and bit squatting.
StalkPhish
-
How to Iidentify zero day phishing URLs
Using Stalkphish.io, or the OSS version https://github.com/t4d/StalkPhish
- GitHub - t4d/StalkPhish: StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
- StalkPhish - “the phishing kit stalker”. Search phishing sites to see if the phisher left their kit behind
What are some alternatives?
dnstwist - Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
HiddenEye-Legacy - Modern Phishing Tool With Advanced Functionality And Multiple Tunnelling Services [ Android-Support-Available ]
ail-typo-squatting - Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.
fish - 🐟 Soothing pastel theme for the Fish Shell
IntelOwl - IntelOwl: manage your Threat Intelligence at scale
scammingthescammers - Short script for dumping a lot of data into forms on any website, I used it for scamming the scammers who tried to scam me with phishing links, by dumping a lot of fake credentials
Scrummage - The Ultimate OSINT and Threat Hunting Framework
phishflood - Pollute phishing kits with fake credentials
TweetFeed - TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.
MurMurHash - This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.