Phishing
The whole docs section is work in progress. Feedback is highly welcome.
General
Cybersquatting
IDN homograph attack
- Wiki:
- IDN homosgraph attack
Punycode
Defense
Client
- General:
- Watch SSL vert or URL
- If uncertain, retpye url in the address bar
- Firefox:
-
- about:config
-
- search for
punycode
- search for
-
- set
valueofnetwork.IDN_show_punycodefromfalsetotrue
- set
-
xn--: - 'ASCII compatible encoding' prefix
- Examples:
- Cyrillic "Π°" (U+0430)
- Latin "a" (U+0041)
- Todo:
- Punycode/ Unicode
- Active Pentest test
- Spear phishing
- Defensemethodes for admins and users
- Test Punycode in other borwser
Helpful links
- Great look up for unicode characters:
- http://unicode-search.net/
E-Mail hello@ittavern.com
Twitter ITTavernCom
Lemmy infosec.pub/c/ittavern