About phishunt.io

A free, open-source project that tracks active phishing sites in real time.

What is phishing?

Phishing is a technique used by cybercriminals to steal credentials and personal information from users.

Despite being one of the oldest attack vectors, it remains the most effective one.

How does phishunt.io work?

phishunt continuously monitors Certificate Transparency logs and phishing feeds, takes a screenshot of each suspicious site, enriches the data with IP, hosting provider, ASN, and TLS certificate info, then serves it via a free API and feeds.

Who is behind phishunt.io?

I'm Daniel López, a Cyber Threat Researcher with over 10 years of experience in the cybersecurity field. I like researching and building projects, and that's why I created phishunt.

What people say

@Sector035

And thank you for your awesome work! ✊

@JCyberSec_

Great find! Keep it up

@JosepAlbors

🔬 Un vistazo a la app maliciosa que se hace pasar por la oficial de Metamask. 👏 Muchas gracias por el aviso y la información de calidad.

@nullcookies

Nice find.

Similar services

phishunt has been inspired by these great projects:

urlscan.ioScan and analyse websites in a sandbox environment.
URLhausProject from abuse.ch sharing malicious URLs used for malware distribution.
PhishTankPhishing feed operated by Cisco Talos Intelligence Group.
OpenPhishCommunity-powered phishing URL feed.

Get the data

All phishing data is free and open - use it in your threat hunting, blocklists, or SIEM.

API Docs Download Feeds