twistrs
opensquat
Our great sponsors
twistrs | opensquat | |
---|---|---|
8 | 5 | |
86 | 648 | |
- | - | |
6.8 | 6.1 | |
6 months ago | 3 months ago | |
Rust | Python | |
MIT License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
twistrs
- Have I Been Squatted?
-
Domain Permutation - HaveIBeenSquatted & dnstwist
I recently stumbled upon 2 cool domain permutation tools: HIBS & dnstwist
-
Have I Been Squatted? – Check if your domain has been typosquatted
It’s powered by twistrs, a Rust typoesquatting library we authored a while back. It’s not much but I hope you enjoy it – would love to hear your feedback and/or questions!
-
Have I Been Squatted — free DNS typosquatting platform
Regarding your question, we pack a large number of different whois servers in the twistrs library that we then use to perform lookups. I suspect we'll eventually hit the same throttling issue and to be brutally honest, it's unclear what a feasible solution to this would look like at this point in (perhaps throttling whois feature entirely). In your context, where you sending all requests to a single API?
Regarding the domain, the missing vowel should be one of the permutations. If it's not a sensitive domain would you mind opening an issue on twistrs highlighting which domain wasn't caught. If it's sensitive you can simple DM me on Reddit or send an email to juxhin[at]phishdeck.com
-
Have I Been Sqautted – free DNS typosquatting platform
Yes it does, you can take a peak into the internals over here - https://github.com/JuxhinDB/twistrs/blob/3b20ed48c0c567a72d8...
opensquat
-
Have I Been Squatted?
A different solution that runs locally is opensquat.
https://github.com/atenreiro/opensquat
- OpenSquat
- How to find a similar looking domains
- Have I Been Sqautted – free DNS typosquatting platform
- The openSquat is an opensource tool for detecting phishing domains and domain squatting. Supports multiple features such as permutations such as homograph attack, typosquatting and bit squatting.
What are some alternatives?
dnstwist - Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
noseyparker - Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
ail-typo-squatting - Generate list of potential typo squatting domains with domain name permutation engine to feed AIL and other systems.
RustScan - 🤖 The Modern Port Scanner 🤖
IntelOwl - IntelOwl: manage your Threat Intelligence at scale
Ockam - Orchestrate end-to-end encryption, cryptographic identities, mutual authentication, and authorization policies between distributed applications – at massive scale.
Scrummage - The Ultimate OSINT and Threat Hunting Framework
TweetFeed - TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.
MurMurHash - This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
ThePhish - ThePhish: an automated phishing email analysis tool
osmedeus - A Workflow Engine for Offensive Security