Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add foreverfarley.com to wildcard domain block list #387

Merged
merged 2 commits into from
Apr 26, 2024
Merged

Add foreverfarley.com to wildcard domain block list #387

merged 2 commits into from
Apr 26, 2024

Conversation

g0d33p3rsec
Copy link
Contributor

@g0d33p3rsec g0d33p3rsec commented Apr 26, 2024
edited
Loading

Phishing Domain/URL/IP(s):

https://foreverfarley.com/M08yODZmOEwyZDBxOXA=
https://foreverfarley.com/MzIydDhzMmo0cDlKMFA=
https://foreverfarley.com/M3gyTjVxOHM5ajZsNUU=

Impersonated domain

https://www.betway.co.za
https://www.ufs.ac.za/
https://www.uwc.ac.za/

Describe the issue

This domain is now serving the phishing kit that was previously at azezieldraconous[.]com (#381), westernautomobileassembly[.]com (#376) , littleswanaircon[.]com[.]sg (#372), iwan2travel[.]com(#370 ), applesforfred[.]com (#369), theaerie[.]ca (#367), nico[.]sa (#366), and ajstelecom[.]com[.]mx (#362)

Related external source

Screenshot

Click to expand

image
image
image

@g0d33p3rsec g0d33p3rsec changed the title Add foreverfarley.com to domain block list Add foreverfarley.com to wildcard domain block list Apr 26, 2024
@spirillen spirillen merged commit 7d1ebc8 into mitchellkrogza:main Apr 26, 2024
@spirillen
Copy link
Collaborator

Usually one of the submission would be sufficient, however, I do understand why you added both

@g0d33p3rsec
Copy link
Contributor Author

Usually one of the submission would be sufficient, however, I do understand why you added both

It's an experiment. I've noticed that the domains don't seem to be making it to the parent database, perhaps due to the automated tests failing, so I wanted to compare against the single URI to see if it made a difference.

@spirillen
Copy link
Collaborator

Good call

This was referenced Apr 27, 2024
Merged
Merged
This was referenced May 7, 2024
Merged
Merged
@g0d33p3rsec g0d33p3rsec deleted the add-foreverfarley.com-to-domain-block-list branch May 15, 2024 02:56
This was referenced May 28, 2024
Merged
Merged
Merged
Merged
@g0d33p3rsec g0d33p3rsec mentioned this pull request Jun 10, 2024
Merged
This was referenced Jun 19, 2024
Merged
Merged
Merged
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@g0d33p3rsec @spirillen