Schadenfreude » phishing http://www.ralree.com Malicious enjoyment derived from observing someone else's misfortune Thu, 09 Feb 2012 01:49:15 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 PhishTank pwns Phishing Phools http://www.ralree.com/2006/10/07/phishtank-pwns-phishing-phools/ http://www.ralree.com/2006/10/07/phishtank-pwns-phishing-phools/#comments Sat, 07 Oct 2006 12:31:00 +0000 Erik http://www.ralree.info/2008/06/23/phishtank-pwns-phishing-phools PhishTank is an awesome website that keeps a database of phishing websites that are
user submitted and verified. It integrates with
OpenDNS, so when a site is verified by the community
as a phishing site, OpenDNS users will see a phishing warning instead of the
original website. There are also other perks like spelling correction and
faster DNS resolves, but the phishing this is revolutionary. I joined
PhishTank today, and I’m currently in second place on number of phishing sites
submitted. I submitted 167 of them from Google’s blacklist after filtering it
with a short perl script.


#!/usr/bin/perl
use strict;
use LWP;
die("Specify a link file.") unless $ARGV[0];
open IN, "<", $ARGV[0];
open OUT, ">>", "results.".$ARGV[0];
while(<IN>) {
  if(/<a href="(.*?)"/) {
    my $browser = LWP::UserAgent->new;
    $browser->timeout(3);
    my $response = $browser->get($1);
    if($response->is_success) {
      print OUT "$_\n";
      print "Success: $1\n";
    } else { print "Failed: $1\n"; }
  }
}

:) I’m so happy when I find sites that are already marked as phishers. If
only the process of submission could be automated completely…I’ll play with
the API on PhishNet and maybe it will become reality.

]]> http://www.ralree.com/2006/10/07/phishtank-pwns-phishing-phools/feed/ 0