OpenPhish

By Maltego Technologies
Timely. Accurate. Relevant phishing intelligence.
# Company Data # Phishing # Cybercrime # Fraud & Abuse
OpenPhish Transforms for Maltego

OpenPhish Transforms for Maltego

OpenPhish is a phishing intelligence platform that helps organizations detect and prevent phishing attacks.

The database contains structured and searchable information on all phishing websites detected by OpenPhish, as well as metadata that can be used for detecting and analyzing cyber incidents, searching for patterns and trends, or act as a training or validation dataset for AI applications.

The database contains these forensics indicators for each URL:

  • Hostname, page, path, and language
  • Impersonated brand
  • SSL certificate metadata
  • IP address, ASN, and country
  • Drop accounts

Using the OpenPhish integration on Maltego, investigators can search and filter for brands that are being impersonated, phishing URLs related to domains, ASNs, and more to answer the following questions:

  • Is a particular URL a phish?
  • How many phishing URLs were detected on a specific hostname?
  • How many phishing URLs on a specific IP address?
  • What percentage of URLs have a specific pattern in their path?

OpenPhish Transforms for Maltego

Typical Users of OpenPhish Data

  • Corporate Investigators
  • Investigative Journalists
  • Law Enforcement Agencies
  • Brand Protection Organizations

Integration Benefits

Enhance Your Phishing Detection Capabilities

Use the extensive database to detect phishing activities.

Find Details of Brands Being Impersonated

Find URLs, ASNs, IPs, and other information being used to impersonate various brands.

Find Related Phishing Campaigns

Expose hidden connections between seemingly unrelated phishing campaigns by analyzing phishing URL metadata.

Find Patterns in Phishing

Explore patterns in URLs, IPs, and ASNs related to phishing that were detected. Answer questions like whether they come from the same hostname, or whether the URLs have consistent pattern.

Leverage OpenPhish Data for

Screening URLs and IP Addresses

Quickly identify if any suspicious URL or IP addresses at hand are involved in phishing-related activities.

Cyber Threat Intelligence

Analyze IOCs of threat actors for potential phishing-related activities.

Brand Protection

Explore URLs, IPs, and others impersonating your brand or a brand you are investigating.
Read more

Contact

Reach out to us to learn more about this data integration and how to access it.
By clicking on "Send Message", you agree to the processing of the data you entered and you allow us to contact you for the purpose selected in the form. For further information, see our Data Privacy Policy.

About OpenPhish

OpenPhish is a phishing intelligence platform that helps organizations detect and prevent phishing attacks. The database contains structured and searchable information on all phishing websites detected by OpenPhish, as well as metadata that can be used for detecting and analyzing cyber incidents, searching for patterns and trends, or act as a training or validation dataset for AI applications. To learn more, visit https://openphish.com/.