{"id":20666209,"url":"https://github.com/hazcod/dnstwist","last_synced_at":"2025-10-11T07:15:52.530Z","repository":{"id":65416466,"uuid":"583277746","full_name":"hazcod/dnstwist","owner":"hazcod","description":"A tool to monitor for potential spear phishing domains and send to Slack.","archived":false,"fork":false,"pushed_at":"2024-02-08T04:57:57.000Z","size":78,"stargazers_count":22,"open_issues_count":11,"forks_count":3,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-04-19T19:08:42.879Z","etag":null,"topics":["detection","dnstwist","phishing","typosquat"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/hazcod.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2022-12-29T09:47:58.000Z","updated_at":"2024-07-03T18:45:18.000Z","dependencies_parsed_at":"2024-11-16T19:35:55.229Z","dependency_job_id":"93c118e4-cc59-4fc8-ad12-8945500eb329","html_url":"https://github.com/hazcod/dnstwist","commit_stats":null,"previous_names":[],"tags_count":13,"template":false,"template_full_name":null,"purl":"pkg:github/hazcod/dnstwist","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hazcod%2Fdnstwist","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hazcod%2Fdnstwist/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hazcod%2Fdnstwist/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hazcod%2Fdnstwist/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/hazcod","download_url":"https://codeload.github.com/hazcod/dnstwist/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/hazcod%2Fdnstwist/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279006596,"owners_count":26084130,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-11T02:00:06.511Z","response_time":55,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["detection","dnstwist","phishing","typosquat"],"created_at":"2024-11-16T19:35:50.495Z","updated_at":"2025-10-11T07:15:52.515Z","avatar_url":"https://github.com/hazcod.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"# dnstwist\n\nThis is a tool that will fetch potential typo-squatting or IDN domains which could be targeting your domain for spear phishing.\nPermutations will be fetched from https://dnstwist.it/.\n\nIt will take into account the registration and/or last updated WHOIS information and a potential whitelist.\n\nDomains identified can be sent to Slack for automated alert purposes.\n\n## Usage\n\nFirst create a configuration file:\n```yaml\n# log settings, optional\nlog:\n  # log level to use\n  level: info\n\n# the domains you'd like to monitor, required\ndomains:\n  # domain(s) to monitor\n  watchlist: [domain.com]\n  # any domains to ignore\n  whitelist: []\n  # domains created in the last week\n  created_since: 168h\n\n# send alerts to a Slack channel, optional\nslack:\n  # slack channel webhook\n  webhook: https://hooks.slack.com/services/XXX\n```\n\nAnd then run the tool:\n```shell\n% dnstwist -config=config.yml\n```\n\nYou can also set configuration values via environment variables:\n\n```shell\n% LOG_LEVEL=info DOMAIN_WATCHLIST=domain.com SLACK_WEBHOOK=xxx dnstwist\n```\n\nAnd use it with the Docker image!\n\n```shell\n% docker run -ti --rm -e \"DOMAIN_WATCHLIST=domain.com\" -e \"SLACK_WEBHOOK=xxx\" ghcr.io/hazcod/dnstwist/dnstwist:latest\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhazcod%2Fdnstwist","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fhazcod%2Fdnstwist","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fhazcod%2Fdnstwist/lists"}