This tool augments dnstwist with a database that tracks identified phishing sites over times, and provides email alerts when new ones are discovered.
$ pip install -r requirements.txt
- Initialize database with
python util.py build - Either add your SMTP credentials by hard-coding them in core.py, or set the
following environment variables:
GFYP_EMAIL_USERNAMEGFYP_EMAIL_PASSWORDGFYP_EMAIL_SMTPSERVER
Ex.
$ export [email protected]
$ export GFYP_EMAIL_PASSWORD=ilovemallory
$ export GFYP_EMAIL_SMTPSERVER=smtp.example.com
# add domain to list for which to hunt phishing domains
python util.py add (domain name) (email address) [optional: path to csv containing additional TLDs to check]
# start searching process
python core.py # or set it as a cron job to regular reports
If using GMail as an SMTP provider, you may first need to log into GMail in the web interface and enable the "Allow less secure apps" option in the "Sign-in & security" section.