Well done: in my opinion you built something that people want.
In your FAQ you wrote:
At the heart of CheckPhish, is an Artificial Intelligence based engine that looks for indicators in a website in realtime and ranks it for phishing. This engine learns continuously from the ever-changing threat landscape and brings to you the latest phishing related intelligence.
It would be great if you could expand on that.
I am particularly interested in knowing how you would deal with 'false alarms'
Thanks @lozzo. CheckPhish proactively indexes pages of popular brands. Since the engine can identify brand automatically, and we know assets of the test url vs that of real brand, it's easy to identify fake vs real page. Keying on brand in this way, helps us avoid false alarms.
I'm just seeing this today. Great work! Looks like it could be very useful!
Would it be possible to integrate this into something like a Palo Alto, so that you could instantly add new blocking rules for any content containing one of the urls?
How about a browser plugin that strips any phishing urls that match? I don't know much about Javascript, but maybe you could even just source in a library and run it client side?
At the heart of CheckPhish, is an Artificial Intelligence based engine that looks for indicators in a website in realtime and ranks it for phishing. This engine learns continuously from the ever-changing threat landscape and brings to you the latest phishing related intelligence.
It would be great if you could expand on that. I am particularly interested in knowing how you would deal with 'false alarms'