How-to use StalkPhish.io

StalkPhish.io is a SaaS application which provides enriched data about potential phishing URL or brand impersonation use, with a REST API.

By StalkPhish in phishing, phishing kit, Stalkphish, tool on
No comments

What is the purpose of StalkPhish.io?

StalkPhish.io is a SaaS application which provides enriched data about potential phishing URL or brand impersonation use, with a REST API.
StalkPhish.io is based on an open source software (OSS), called StalkPhish, created by the founder of StalkPhish. This version of StalkPhish is an augmented one (more enrichment, more data sources), you don’t need to deploy and maintain a StalkPhish OSS tenant, we do it for you. Then you can easily use the StalkPhish.io REST API to retrieve data you need.

Register on StalkPhish.io

As we deliver an API key, you need to register – for free – on StalkPhish.io, as is you can manage your informations and API key.
To register on StalkPhish.io click on the ‘Register’ button on the top right of your window:

Then Fill in the requested informations before fill up the captcha. Use a valid e-mail address because you will have to validate your registering request:

Once it is done, you will receive the validation link on the e-mail address you use to register, click on it, your account is now created and ready to use. You can now use the login form to log-in and have access to your account informations:

You now have access to your API key, key you need to use the StalkPhish.io’s REST API (Note that you can renew this key for a reason or another).

Once you registered, you can now start using our plateform… Welcome! 🙂

Using StalkPhish.io REST API

A Free subscribed plan (the default plan) let you access those REST API functions:
/api/v1/me : Return informations about account linked to API key.
/api/v1/last : Return n last results, with n depending on your subscription.
/api/v1/search/url : Return results of string search appearing in a URL
/api/v1/search/title : Return results of string search appearing in a website title.
/api/v1/search/ipv4 : Return results of IPv4 search.

You can use this REST API with the tool of your choice, like:

cURL: curl -H “authorization:Token 96880783bf1ca220b2991be15252bbaeb026fbcf” https://api.stalkphish.io​/api/v1/me

Wget: wget -qO- –header “authorization:Token 96880783bf1ca220b2991be15252bbaeb026fbcf” https://api.stalkphish.io​/api/v1/me

Python requests: my_headers = {“Authorization” : “Token 96880783bf1ca220b2991be15252bbaeb026fbcf”}
response = requests.get(“https://api.stalkphish.io​/api/v1/me”, headers=my_headers)

You can first test your access using /api/v1/me to retrieve your account informations:

Then you can start grabbing informations you need from StalkPhish.io’s data.
We advise you to be as specific as possible on the string you look for, for example, if you look for a specific phishing kit, you can use a URL search with a specific name or directory file appearing into the phishing kit:

And so on…

Enjoy! 🙂

Tags: , , ,