goCertStreamCatcher

command module
v0.0.0-...-6b1e5dd Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 1, 2018 License: Apache-2.0 Imports: 11 Imported by: 0

README

goCertStreamCatcher

Catching phishing by observing certificate transparency logs. This tool is based on regex with effective standards for detecting phishing sites in real time using certstream and can also detect punycode (IDNA) attacks such as https://www.ṁyetḣerwallet.com.

This is a go port of the nodejs version originally by @6IX7ine.

Building
$ go get github.com/sourcekris/goCertStreamCatcher
$ cd $GOPATH/src/github.com/sourcekris/goCertStreamCatcher
$ go build
Usage

Right now it builds a standalone binary goCertStreamCatcher so simply go build it and run ./goCertStreamCatcher

Todo
  • Verify the punycode logic is as expected.
  • Probably influence the logic more if the subdomain has a lot of dashes/periods
  • Add additional analysis logic to detect other suspicious domain
  • Headless browse the suspicious sites and grab screenshots?

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.