Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jimywork/certstreamcatcher

This tool is based on regex with effective standards for detecting phishing sites in real time using certstream and can also detect punycode (IDNA) attacks.
https://github.com/jimywork/certstreamcatcher

certstream nodejs phising regex

Last synced: about 2 months ago
JSON representation

This tool is based on regex with effective standards for detecting phishing sites in real time using certstream and can also detect punycode (IDNA) attacks.

Host: GitHub
URL: https://github.com/jimywork/certstreamcatcher
Owner: jimywork
Created: 2017-12-18T20:28:23.000Z (about 7 years ago)
Default Branch: master
Last Pushed: 2018-11-30T00:00:56.000Z (about 6 years ago)
Last Synced: 2024-10-10T09:30:38.251Z (3 months ago)
Topics: certstream, nodejs, phising, regex
Language: JavaScript
Homepage: https://twitter.com/6IX7ine
Size: 175 KB
Stars: 81
Watchers: 8
Forks: 19
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        # Certstreamcatcher

Catching phishing by observing [certificate transparency logs](https://www.certificate-transparency.org/known-logs). This tool is based on regex with effective standards for detecting phishing sites in real time using [certstream](https://github.com/CaliDog/certstream-js) and can also detect [punycode (IDNA)](https://en.wikipedia.org/wiki/Punycode) attacks such as https://www.ṁyetḣerwallet.com.

### Phishing 

[![Phishing](https://pbs.twimg.com/media/DY-k7YFWsAA_f8l.jpg)](https://twitter.com/6IX7ine/status/943229448614182912)

### Installation

```

$ cd /opt/

$ git clone https://github.com/6IX7ine/certstreamcatcher.git

$ cd certstreamcatcher

$ npm install

```

### npm package

To install certstreamcatcher using `npm` run:

  	npm install --save certstreamcatcher

       

### Try on npm runkit

This is a playground to test certstreamcatcher

[https://npm.runkit.com/certstreamcatcher](https://npm.runkit.com/certstreamcatcher)

    

### Usage

The certstreamcatcher is extremely simple, all you have to do is to import the library **certstreamcatcher** and certstream register the callback and call **certstreamClientPhishing** and pass the callback parameter to certstreamClientPhishing.

```

const certstreamcatcher = require('certstreamcatcher'); 

const certstream = require("certstream");

const regex = /(wellsfargo|paypal|login|sign-in|secure|update|money|sslsecure|amazon)/gi; # Keywords

const tlds = ['.io','.gq','.ml','.cf','.tk','.xyz','.pw','.cc']; # tlds 

var client = new certstream(function(certstream) {  

	certstreamcatcher.certstreamClientPhishing(certstream, regex, tlds, {tlds: true});

});

client.connect();

```

To execute the program save the above code and execute with the command:

```

$ node certstreamcatcher.js

```

## Donations

* XMR: `49m12JEEC6HPCHkLMX5QL4SrDQdKwh6eb4Muu8Z9CwA9MwemhzFQ3VcgHwyuR73rC22WCymTUyep7DVrfN3GPt5JBCekPrR`