Miteru

Gem Version Build Status Maintainability Coverage Status

Miteru is an experimental phishing kit detection tool.

How it works

  • It collects phishing suspicious URLs from urlscan.io.
  • It checks a suspicious URL whether it contains a phishing kit (*.zip file) or not.

Installation

$ gem install miteru

Usage

$ miteru
Commands:
  miteru execute         # Execute the crawler
  miteru help [COMMAND]  # Describe available commands or one specific command

$ miteru help execute
Usage:
  miteru execute

Options:
  [--auto-download], [--no-auto-download]  # Enable or disable auto-download of *.zip file(s)
  [--download-to=DOWNLOAD_TO]              # Directory to download file(s)
                                           # Default: /tmp
  [--post-to-slack], [--no-post-to-slack]  # Post a message to Slack if it detects a phishing kit
  [--verbose], [--no-verbose]
                                           # Default: true

Execute the crawler

$ miteru execute
...
https://dummy1.com: it doesn't contain a phishing kit.
https://dummy2.com: it doesn't contain a phishing kit.
https://dummy3.com: it doesn't contain a phishing kit.
https://dummy4.com: it might contain a phishing kit (dummy.zip).