Intercept.io

Log In

Intercept.io

Log In

Intercept.io

Log In

Indicator Of Kit

Indicator Of Kit

Indicator Of Kit

The commercial rules we want to highlight:

The commercial rules we want to highlight:

The commercial rules we want to highlight:

We analyzing hundreds of gigs of phishing kits

We analyzing hundreds of gigs of phishing kits

We analyzing hundreds of gigs of phishing kits

Have a team hand crafting and retro hunting rules

Have a team hand crafting and retro hunting rules

Have a team hand crafting and retro hunting rules

Information templates for hundreds of parked page providers

Information templates for hundreds of parked page providers

Information templates for hundreds of parked page providers

Browse The Rules

Browse The Rules

Open source detection rules for phishing site techniques, kits, and threat actors

Open source detection rules for phishing site techniques, kits, and threat actors

Open source detection rules for phishing site techniques, kits, and threat actors

Simple: based on Sigma, a simple detection rules language 🚀

Simple: based on Sigma, a simple detection rules language 🚀

Simple: based on Sigma, a simple detection rules language 🚀

Rich metadata: rules have descriptions, tags, and links to blog posts or related rules.

Rich metadata: rules have descriptions, tags, and links to blog posts or related rules.

Rich metadata: rules have descriptions, tags, and links to blog posts or related rules.

Information Signatures

Information Signatures

Parked Page Detection

Parked Page Detection

GoDaddy

Epik

Easyname

NameCheap

Pair Domains

WIX

Default Page Detection

Default Page Detection

CPanel

Plesk

Link Shortners

Link Shortners

Bit.ly

Takedown Action

Takedown Action

Interstitials:

Interstitials:

Cloudflare

Blogger Interstitials

Suspended Panels:

Suspended Panels:

CPanel

Plesk

Suspended Free Services:

Suspended Free Services:

github

000webhost

netlify

squaresite

weebly

webflow.io

Detection Levels

Detection Levels

Status

Description

Examples

Confirmed Malicious

Specific known-bad phishing kits

A brand target phishing kit sold on Telegram

Likely Malicious

Known phishing kit code / platforms (not attributable to a specific brand)

reCAPTCHA API keys re-used across phishing sites

Potentially Malicious

Tactics associated with phishing sites

Evidence page was cloned using HTTrack Website Copier

Informational

Interpreting common signals to aid automatic investigations

Parked Page, Default Page, Takedown Pages

Confirmed Safe

Known-good infrastructure

Legit Microsoft SaaS infrastructure

Request a Demo

Get Started

Request a Demo

Get Started

Request a Demo

Get Started

Intercept.io

Twitter / X

LinkedIn

Products

Takedowns

Kill Switch

Indicator Of Kit

Company

About Us

Contact Us

Career

Help

FAQ's

Terms & Conditions

Privacy Policy

© 2024 InterceptIO, Inc. All rights reserved.

Intercept.io

Twitter / X

LinkedIn

Products

Takedowns

Kill Switch

Indicator Of Kit

Company

About Us

Contact Us

Career

Help

FAQ's

Terms & Conditions

Privacy Policy

© 2024 InterceptIO, Inc. All rights reserved.

Intercept.io

Twitter / X

LinkedIn

Products

Takedowns

Kill Switch

Indicator Of Kit

Company

About Us

Contact Us

Career

Help

FAQ's

Terms & Conditions

Privacy Policy

© 2024 InterceptIO, Inc. All rights reserved.