Your Daily Dose of Phish

[rothoma2]

The Problem

Security Analyst are constantly in a need for Fresh Phishing Samples. Most Phishing Detection is done through ML Models. For Models to be effective they need fresh samples collected from the field, to retrain and evaluate models.

This samples are also useful as inspiration for Internal Phishing Exercises to be run as part of Phishing Training that resembles Threats seen in the Wild.

The Requirements.

Write a Python Package, (wheel, using poetry) Linux CLI tool that connects to several data sources and collect malware samples that have been published recently (last 24, 48 or 72 hours.

Evaluate sources to collect fresh Phishing Samples.

This is an initial list of where samples can be collected.

• https://phishstats.info/
• VirusTotal Email Type.

Samples should be compressed in zip folder and stored in a local folder.
After download all samples should be placed in a tar file.
Keep the tool and script simple. It will be enhanced later.

Solution
Currently looking for a Collaborator for initial write up. If you are interested look at this repo. ()