analyzing-certificate-transparency-for-phishing
CommunityDetect phishing domains via CT logs.
Data & Analytics#threat-intelligence#brand-protection#phishing-detection#certificate-transparency#ct-logs#crt.sh#certstream
AuthorYukiIto1999
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Certificate Transparency monitoring helps security teams detect phishing domains and fraudulent certificates associated with their brand by analyzing CT data from public logs.
Core Features & Use Cases
- Query crt.sh for historical and current certificates matching your domains
- Real-time monitoring with Certstream to surface new suspicious certificates
- Generate CT intelligence reports highlighting lookalikes, homoglyphs, and wildcard issuances
- Enumerate subdomains from CT logs to expand visibility of the attack surface
Quick Start
Query crt.sh for certificates related to your domain and review lookalike patterns to identify potential phishing infrastructure.
Dependency Matrix
Required Modules
requestscertstreamLevenshteintldextract
Components
scriptsreferences
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: analyzing-certificate-transparency-for-phishing Download link: https://github.com/YukiIto1999/ctf-sleuth/archive/main.zip#analyzing-certificate-transparency-for-phishing Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.