add a source for IDN Homograph Attacks #1301
Conversation
|
@spirillen I am a little bit lazy today, not sure what I should add in the following files, so I left them empty:
Thoughts? Follow the domains added: Follow the domains added in punycode: |
|
All seems good, just thinking... isn't this more Typo Squatting? + intention? 🤔 PS: shutting down for to day, as the powerbill are insane for the rest of the day €1 Kw/h |
Yea, I would say it is a type of Typo Squatting, where a person can register a domain using multiple characters set (Latin, Cyrillic, Greek, etc). Not sure if it is a better idea to add IDN Homograph as a subcategory of Typo Squatting. Let's think about it. Going to shut down for today too. See ya later |
| @@ -0,0 +1,3 @@ | |||
| 15.197.148.33 | |||
There was a problem hiding this comment.
Needs network cidr notation such as https://github.com/mypdns/matrix/blob/afda6ac966c683b414c25d32890f6c53cd32338e/source/spyware/rpz-ip.csv
Details for the RPZ rule: https://kb.mypdns.org/articles/MTX-A-10#the-response-ip-address-trigger-rpz-ip
RFC Draft: https://datatracker.ietf.org/doc/html/draft-vixie-dns-rpz-04#section-4.3
There was a problem hiding this comment.
Ironic... they are fingerprinting your browser to ensure you are human...
There was a problem hiding this comment.
@glaubermagal are you solving these IP addresses? then I can get this one merged
Signed-off-by: spirillen <[email protected]>
Signed-off-by: spirillen <[email protected]>
glaubermagal
changed the title
hi @spirillen IMO, I believe it’d be better to keep IDN Homograph Attacks and Typo-Squatting into separate sections instead of making one a subsection of the other. I believe that it gives us room to expand on each if we want to add more details down the line. Just an idea. Thoughts? |
|
issues are unsolved, consider MR as stalled, closing |
Creating this Pull Request from our previous conversations:
Phishing-Database/phishing#508