Hacker News new | ask | show | jobs
by achillean 1999 days ago
Something I didn't expect were the number of developers that hadn't heard of favicons before. Got quite a few people asking what those icons were. Btw there are security use-cases around them as well nowadays (ex. detecting phishing websites).
1 comments
1cvmask 1999 days ago
Do the crooks forget to add favicons to their phishing sites?

Favicons can be a single image or multiple images.

Here is a good recent thread on it on HN. Will put the map there as well come to think of it.

https://news.ycombinator.com/item?id=25520655

link
achillean 1999 days ago
No, very often they do add the favicons! That makes it easier to locate websites that are outside of your expected IP space but are pretending to belong to you. For example:

https://beta.shodan.io/search?query=http.favicon.hash%3A7085...

It takes a bit more refining to get a good list of results; the general idea is to find websites that look like the real deal but are located somewhere on the Internet where you didn't expect to find them.

link