pysafebrowsing.py is a python script that utilize the power of Google Safe Browsing that provides web resources that contains malware or phishing content.
A quick wiki about phishing:
Phishing is the act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, banks, online payment processors or IT administrators are commonly used to lure unsuspecting public. Phishing emails may contain links to websites that are infected with malware. Phishing is typically carried out by email spoofing or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Phishing is an example of social engineering techniques used to deceive users, and exploits the poor usability of current web security technologies.Attempts to deal with the growing number of reported phishing incidents include legislation, user training, public awareness, and technical security measures.
By checking first with this script, it could help you extract information about the url if it is a potentially malicious websites or a legitimate website that have been compromised. Possible attacks are phishing site to gain your credentials/logins and if you click on the link page on that infected site, you are then redirected to a malicious site which can implant malware on your machine or temp you to install rouge security product.
Here's a sample screenshot on how to use:
Download here: pysafebrowsing.py
A quick wiki about phishing:
Phishing is the act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication. Communications purporting to be from popular social web sites, auction sites, banks, online payment processors or IT administrators are commonly used to lure unsuspecting public. Phishing emails may contain links to websites that are infected with malware. Phishing is typically carried out by email spoofing or instant messaging, and it often directs users to enter details at a fake website whose look and feel are almost identical to the legitimate one. Phishing is an example of social engineering techniques used to deceive users, and exploits the poor usability of current web security technologies.Attempts to deal with the growing number of reported phishing incidents include legislation, user training, public awareness, and technical security measures.
By checking first with this script, it could help you extract information about the url if it is a potentially malicious websites or a legitimate website that have been compromised. Possible attacks are phishing site to gain your credentials/logins and if you click on the link page on that infected site, you are then redirected to a malicious site which can implant malware on your machine or temp you to install rouge security product.
Here's a sample screenshot on how to use:
Download here: pysafebrowsing.py
0 comments:
Post a Comment