How to Catch Phishing Sites with Certstream Logs

February 1, 2018 | Views: 2796

Begin Learning Cyber Security for FREE Now!

FREE REGISTRATIONAlready a Member Login Here

 

What is certstream

 

CertStream is an intelligence feed that gives you real-time updates from the Certificate Transparency Log network, allowing you to use it as a building block to make tools that react to new certificates being issued in real time.

And by using this we are going to catch phishing sites using certstream SSL certificate live streaming.

 

Steps to catch phishing sites

  • First open your terminal and clone into this url with following command:

git clone https://github.com/x0rz/phishing_catcher.git

 

  • Go to your downloaded directory with cd phishing_catcher

 

  • Install required dependencies with pip install -r requirements.txt

 

  • Finally run the program with  python catch_phishinh.py and it will start showing list of malicious phishing sites by using live certstream SSL certificate

 

Caught the malicious phishing site

And below you can see we got some fake Apple sites with similar looking interface

 

 So by using following instructions you can be aware of malicious phishing sites and protect yourself to be their victim also remember to always look for the HTTPS in the URL

 

Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Use Cybytes and
Tip the Author!
Join
Share with Friends
FacebookTwitterGoogle+LinkedInEmail
Ready to share your knowledge and expertise?
4 Comments
  1. There’s typo, it’s not “python catch_phishinh.py” it’s “python catch_phishing.py”

  2. Hello,

    i’m really new to this computer world and i’m just wondering if this can only be done on Linux or if it can be done on your windows terminal for eg?

    also when you download the phishing catcher-git. is this something stays on your computer or is it something that you need to download every time you wish to check?

    kind regards
    Matt

    • If you have dependencies installed on your system you can use on your desired OS, and no you don’t need to download every time , just run the script.

      • Okay cool, so dependencies are files to make packets smaller. which most system already have. That’s the understanding iv just read up on. So i’m hoping that my windows 10 will already have the files installed, or i will become stuck on what to do next.

        a good article and a good starting point to learn.
        Thank you.

Comment on This

You must be logged in to post a comment.

Our Revolution

We believe Cyber Security training should be free, for everyone, FOREVER. Everyone, everywhere, deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is a free community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

Cybrary On The Go

Get the Cybrary app for Android for online and offline viewing of our lessons.

Get it on Google Play
 

Support Cybrary

Donate Here to Get This Month's Donor Badge

 
Skip to toolbar

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel