Your Brand Is Under Attack.We Catch Threats Before They Strike.
PhishPin scans millions of live threat intelligence URLs daily — instantly flagging phishing domains, typosquats, and brand impersonation attempts targeting your business, your customers, and your reputation.
No credit card required800K+ live URLsRefreshed 6× dailyInstant access
⚡Incremental scan mode active — already-reviewed URLs will be skipped for existing brands.
URLs Scanned
0
from server cache (all sources)
Threats Found
0
matches detected
Typosquats
0
pattern variations
Brands Monitored
0
in watchlist
BrandMatch TypeThreatStatus
Threat Intelligence Results 0 records
🔍
No scan results yet
Add brands above and click Run Threat Scan
📦
Scan complete — results ready
0 threats · 0 URLs
⚠ Important Disclaimer
Results are sourced from our proprietary threat intelligence engines and are provided for informational purposes only. PhishPin does not guarantee the accuracy, completeness, or timeliness of this data. Do not click on any flagged URLs directly — use sandboxed environments only. PhishPin is an automated intelligence-assistance tool and does not replace professional cybersecurity investigation. See footer for full terms.
🌐 Newly Registered Domains Threat Intelligence
Daily NRD feed from whoisds.com · Brand matching across fresh registrations · Active domain verification
Domains Scanned
0
across all date files
Threats Found
0
brand matches detected
Active Domains
0
live & resolving
Dates Processed
0
NRD files loaded
BrandMatch TypeThreatStatusDate
NRD Threat Intelligence Results 0 records
🌐
No NRD scan results yet
Add brands, load NRD files, then click Run NRD Threat Scan
📦
NRD Scan complete — results ready
0 threats · 0 domains
⚠ NRD Disclaimer
Newly registered domains are not inherently malicious. Results indicate brand-name matches in fresh registrations only — the domain owner may be legitimate. Always verify before taking enforcement action. NRD data is sourced from whoisds.com free tier (no WHOIS data included).
Enforcement Services
PhishPin provides automated threat intelligence to support your enforcement and brand-protection workflows. Our services reduce analyst workload and accelerate response time across multiple threat vectors.
🎣
Anti-Phishing Enforcement
Automated detection of phishing domains impersonating your brand across multiple proprietary threat intelligence engines. Our engine uses multi-vector analysis including exact match, typosquatting, homoglyph detection, and subdomain abuse patterns. Contact us - support@phishpin.com
Real-time multi-source threat feed monitoring
Pattern-based URL deception analysis
Threat level scoring (High / Medium / Low)
Active/Down status verification per domain
Exportable evidence for ICANN, registrar, and CERT complaints
Incremental scanning — no duplicate review overhead
Supports bulk brand watchlists for enterprise teams
Typical impact: Reduces phishing site dwell time by surfacing threats early. Results can be directly used in abuse desk submissions to hosting providers, domain registrars, and national CERTs.
™
Brand & Trademark Abuse Enforcement
Identify and document instances of brand name abuse used in phishing infrastructure. Covers lookalike domains, brand-keyword-stuffed URLs, and deceptive subdomains crafted to exploit consumer trust in your trademark. Contact us - support@phishpin.com
Continuous monitoring across multi-brand portfolios
Integration-ready exports (CSV / XLSX) for legal teams
Trademark owners can use PhishPin output as a starting point for UDRP filings or cease-and-desist notices — always in conjunction with qualified legal counsel.
🛒
Marketplace Enforcement
Detect phishing and counterfeit-adjacent URLs that masquerade as legitimate e-commerce platforms, product pages, or payment gateways. Particularly valuable for brands with high consumer-facing digital commerce exposure. Contact us - support@phishpin.com
Reports structured for platform trust & safety teams
Amazon, Flipkart, eBay brand protection workflows
Cross-brand portfolio scanning capability
Works best in combination with manual review by your brand protection team. Results are indicative and should be verified before formal escalation.
📱
Social Media Enforcement
Surface phishing URLs that mimic social media platforms or leverage social channels as attack vectors. Detect brand impersonation through social-platform-style URL patterns distributed via phishing campaigns.
Tracking threat URLs distributed via social campaigns
Social media enforcement requires platform-specific reporting to be actioned. PhishPin provides detection intelligence; enforcement actions must go through official platform channels.
📧
Email Scam Enforcement
Detect phishing URLs embedded in email scam campaigns targeting your brand. BEC (Business Email Compromise), spoofed sender domains, and credential-phishing landing pages are identified through URL-level pattern analysis.
BEC & email spoofing domain detection
Phishing landing page URL identification
Credential harvesting page pattern recognition
Domain-level threat scoring for email security teams
Integration-ready output for DMARC/DKIM enforcement teams
Support for CERT, APWG, and anti-spam body reporting
Timestamped scan records for incident documentation
Email scam enforcement is most effective when PhishPin intelligence is combined with your email gateway logs and SIEM data for full campaign attribution.
⚙️
How PhishPin Works
PhishPin is a fully automated, single-operator threat intelligence tool. No installation, no agent deployment. Built for brand protection analysts, legal teams, and cybersecurity professionals.
Add brand keywords to the watchlist
PhishPin fetches live threat feeds server-side via multiple intelligence engines
Multi-layer matching engine analyses every URL
Threats are scored, deduplicated, and status-checked
Export results as CSV or XLSX for downstream action
Incremental mode skips already-reviewed URLs on repeat scans
No data is stored on PhishPin servers — fully client-side processing
About PhishPin
PhishPin is an automated brand threat intelligence platform built to help organisations reduce the manual effort involved in monitoring phishing infrastructure targeting their brands.
—
URLs Checked Per Run
6
Detection Vectors
—
Total Scans Run
Our Mission
Brand protection teams and cybersecurity analysts spend enormous amounts of time manually reviewing phishing URLs to identify threats targeting their organisations. PhishPin was built to automate that initial triage layer — pulling from trusted community feeds, applying intelligent matching, and surfacing only what matters.
We believe threat intelligence should be accessible, fast, and frictionless — no enterprise contracts, no complex deployments. A single PHP file, self-hosted, under your control. Contact us - support@phishpin.com
What We Do
PhishPin ingests threat intelligence from multiple proprietary intelligence engines — covering millions of verified phishing URLs — and runs them through a multi-layer matching engine designed specifically for brand impersonation detection.
Every URL is analysed for exact brand matches, typosquatting, homoglyph substitution, leet-speak encoding, subdomain abuse, and prefix/suffix manipulation. Results are scored by threat level and checked for live status. Contact us - support@phishpin.com
Data & Privacy
PhishPin processes all data locally in your browser. The PHP proxy fetches threat feeds via our intelligence engines on your server — no data is transmitted to PhishPin. Brand names you enter and scan results are stored only in your browser's local storage for incremental scan functionality.
You can clear all stored data at any time using the 🗑 Clear All Session Data button (fixed to the bottom-right corner of every page). We do not collect, transmit, or store any user data.
Technology
Built as a zero-dependency, single-file PHP application. The pattern matching engine runs entirely in the browser via JavaScript. The server-side PHP proxy handles CORS-compliant feed fetching and URL status checking.
Libraries used: PapaParse (CSV parsing), SheetJS (XLSX export). No database required. Deploy anywhere with PHP + cURL support.
🔒 A Note on Responsible Use
PhishPin is designed as an intelligence-assistance tool. The URLs surfaced in results are sourced from our proprietary threat intelligence engines. PhishPin makes no independent determination of whether any specific URL is malicious. Results should always be reviewed by a qualified security analyst before being used as the basis for takedown requests, legal filings, or other enforcement actions. Automated tools reduce workload — they do not replace human judgment.
✉ Contact Us
Have a question about our services? Send us an enquiry and our team will get back to you shortly.
📋 Enquiry Form
All fields required
✅
Enquiry Sent Successfully!
Thank you for reaching out. We have received your enquiry and will respond to within 1–2 business days.
0 / 2000
By submitting this form you agree to be contacted by PhishPin in relation to your enquiry. We will never share your information with third parties. See our Privacy Policy.
🧪 URL Sandbox Viewer
Load & inspect suspicious URLs in an isolated, script-disabled environment · AI-powered phishing analysis · Screenshot to local machine
✅Terms & Conditions accepted for this session.
You are using the PhishPin Sandbox under the Authorised Analyst Acceptable Use & No-Liability Agreement.
Review Terms
AI Threat Analysis
⏳ Analysing…
Claude is analysing page content for phishing indicators…
about:blank
⚠ SANDBOX
Fetching page…
🧪
Sandbox Ready
Enter a suspicious URL in the panel on the left and click Load in Sandbox.
The page will be fetched server-side, scripts will be stripped, and the content rendered safely here for analyst review. Use the AI analysis panel for instant phishing risk assessment.
📊 Combined Threat Intelligence Dashboard
Unified view of Threat Intelligence + NRD Newly Registered Domain data · Correlation engine · Brand targeting analytics
Custom Brand Filter (optional — leave empty for auto top-100 detection)
Mode: Auto — will detect top 100 brands automatically
Initialising…0%
Engine 1
—
waiting
Engine 1
—
waiting
GitHub Intel
—
waiting
Engine 3
—
waiting
Engine 5
—
waiting
NRD Domains
—
waiting
🔍Warming up threat intelligence engine…
Processing Log
📊
Ready to Analyse
Click Run Combined Analysis to automatically detect the top 100 most-targeted brands
across all threat sources + NRD date files — no setup required.
Optionally add specific brand names below to focus analysis on those brands only.
🔒
Combined Intel Dashboard
Your scan ran across all sources. Upgrade to Pro to view the full combined threat intelligence dashboard, correlation table, charts, and export reports.
Engine 1 Threat Intel
Engine 1 Feed
GitHub Threat Lists
NRD — Newly Registered Domains
Total URLs / Domains Scanned
0
—
Total Threats Found
0
—
Most Targeted Brand
—
—
High Threat Entries
0
critical risk items
Brands Monitored
0
—
Filter by Brand
Click a brand to filter all charts and metrics
Brand Targeting Distribution
Threat Level Breakdown
Data Source Split
Match Type Analysis
Site Status Distribution
Top Brands — Threat Count
Brand Correlation Engine 0 brands
Brand
Total Hits
Engine 1
Engine 1
GitHub
NRD
High
Active
Risk Score
Brand PDF
ℹ Auto Brand Detection Engine — 4 Sources
Pulls threat intelligence sequentially from Engine 1 (ML-detected phishing feed), Engine 2 (aggregated threat lists), Engine 3 (score-filtered phishing URLs), and NRD (newly-registered domains). All sources are stored in a server-side cache, refreshed 6× per day via cron job, and merged with full deduplication before brand matching. When no custom brands are specified, the engine automatically detects the top 100 most-targeted brands across all sources.
⚠ Security Research Tool — Authorised Use Only
PhishPin Sandbox
This tool renders live third-party URLs in a scripts-disabled read-only environment for threat analysis.
⚠ For authorised security professionals only. By proceeding you confirm you are a qualified cybersecurity analyst or brand protection professional acting within your professional mandate. URLs may point to malicious content — you assume full personal responsibility for all consequences of use. PhishPin excludes all liability to the fullest extent permitted by law. All JavaScript is disabled; content is read-only. Never act on AI results without independent human verification. Use constitutes acceptance of PhishPin's full Terms & Conditions.
Privacy Policy
Effective Date: 2025. This Privacy Policy describes how PhishPin handles information in connection with your use of the platform.
Data We Do Not Collect
PhishPin does not collect, store, transmit, or share any personally identifiable information (PII). We do not operate user accounts, analytics tracking, cookies for advertising, or any form of user profiling.
Local Storage
Brand names you add to the watchlist and scan history markers (used for incremental scanning) are stored exclusively in your browser's localStorage. This data never leaves your device. You can clear it at any time via the 🗑 Clear All Session Data button (bottom-right corner of every page) or by clearing your browser data.
Feed Fetching
When you run a scan, your server (where this PHP file is hosted) fetches threat feeds from our intelligence engines. These requests originate from your server's IP address. PhishPin has no visibility into these transactions. You are responsible for complying with each source's terms of use.
URL Status Checking
When website status checking is enabled, your server makes HEAD requests to flagged URLs to determine if they are live. This is done entirely server-side. PhishPin does not log or store the URLs checked or the results returned.
Third-Party Services
PhishPin loads fonts from Google Fonts and JavaScript libraries from cdnjs.cloudflare.com. These third-party services may log your IP address per their own privacy policies.
Contact
If you have questions about this privacy policy, please refer to the documentation accompanying your installation of PhishPin.
Terms & Conditions
By using PhishPin, you agree to the following terms. If you do not agree, do not use this platform.
Permitted Use
PhishPin is intended for use by cybersecurity professionals, brand protection analysts, and legal teams for the purpose of identifying potential phishing threats targeting legitimate brands. Use is permitted for threat intelligence research, brand monitoring, and enforcement evidence gathering.
Prohibited Use
You may not use PhishPin to: harass or target individuals, generate false or fabricated threat evidence, automate abuse complaints without human review, circumvent terms of service of third-party platforms, or for any unlawful purpose.
Accuracy of Results
PhishPin results are generated by automated pattern matching and are provided for informational purposes only. Results may contain false positives and false negatives. No result should be acted upon without independent verification by a qualified analyst. PhishPin makes no warranty regarding the accuracy, completeness, or timeliness of results.
No Legal Advice
Nothing on this platform constitutes legal advice. If you intend to use PhishPin output in legal proceedings or formal enforcement actions, you must consult qualified legal counsel.
Limitation of Liability
To the maximum extent permitted by applicable law, PhishPin and its operators shall not be liable for any direct, indirect, incidental, special, or consequential damages arising from use of this platform, including but not limited to damages arising from reliance on scan results, actions taken against third parties, or any harm resulting from visiting URLs identified by the tool.
Third-Party Data
Scan results are sourced from multiple threat intelligence engines. PhishPin has no control over the accuracy of this data and assumes no responsibility for errors or omissions. You are responsible for complying with each source's terms of service.
Modifications
These terms may be updated at any time. Continued use of the platform constitutes acceptance of updated terms.
Full Disclaimer
No Warranty
PhishPin is provided "as is" and "as available" without any warranty of any kind, whether express, implied, statutory, or otherwise, including without limitation any warranty of merchantability, fitness for a particular purpose, or non-infringement.
URL Safety
URLs displayed in PhishPin results are believed to be phishing URLs. Do not click on any URL in the results table. If analysis of a URL is required, it must be performed in an isolated, sandboxed environment by a trained cybersecurity professional. PhishPin is not responsible for any harm, data loss, compromise, or legal liability arising from accessing any URL identified by this tool.
Automated Tool Limitations
PhishPin is an automated intelligence-assistance tool. Automation reduces manual workload but does not eliminate the need for human review. False positives (legitimate URLs incorrectly flagged) and false negatives (threats missed) are inherent in any automated detection system. Users must apply professional judgment to all results.
Not a Cybersecurity Service
PhishPin does not provide managed security services, incident response, or active threat mitigation. It provides read-only threat intelligence data from public sources. It is the responsibility of the user and their organisation to determine appropriate responses to threats identified.
Jurisdiction
Users are solely responsible for ensuring their use of PhishPin complies with all applicable laws and regulations in their jurisdiction, including laws relating to cybersecurity, privacy, data protection, and intellectual property.
Indemnification
By using PhishPin, you agree to indemnify and hold harmless PhishPin and its operators from any claims, damages, or expenses arising from your use of the platform or violation of these terms.
🔐
BrandRadar AI — Pro Feature
Uses advanced ML to analyze brand threats & predict attack patterns. Available on Pro and Elite plans.
AI-Powered · Powered by Phishpin Intelligence
BrandRadar AI
Transform your brand monitoring into predictive intelligence. Analyze threat patterns, forecast attacks, benchmark competitors — all powered by Phishpin's live threat data.
—
Feeds Loaded
—
Threat URLs
—
Last Updated
📡 Configure Intelligence Scan
Brands / Competitors to Analyze
💡 Add multiple brands to generate competitive intelligence. Uses live Phishpin threat feed cache.
⚠ No cache found — run Feed Fetch first to populate threat data.
Scanning threat intelligence feeds…
Analyzing patterns · Computing risk scores · Building predictions
⚠️
Analysis failed. Please check your inputs and try again.
🎯 Brand Risk Index
🔮 AI Threat Predictions (Next 30 Days)
🏢 Competitive Intelligence
Brand
Risk Score
Active Threats
Trend
Hotspot
Ranking
📊 Industry Threat Breakdown
💡 Market Intelligence Insights
🔐
Domain Scanner — Pro Feature
Domain Scanner performs deep analysis of suspicious domains — WHOIS lookup, DNS records, hosting info, screenshot capture, and threat scoring. Available on Pro and Elite plans.
🔎
Redirecting to Domain Scanner…
Simple, Transparent Pricing
Start free. Upgrade when your threat intelligence needs grow.
✓ 20 threat scans per day (Brand Intel + NRD + Combined Intel)
✓ Full feed scan — all 800K+ URLs (all results unlocked)
✓ 10 brands per scan
✓ 200 sandbox sessions/day
✓ 20 NRD scans/day
✓ 20 Intel Dashboard/day
✓ Security Headers Checker (10/day)
✓ Domain Scanner (10/day)
✓ BrandRadar AI (10/day)
✓ CSV & XLSX Export
🔒 API Access
⭐ Elite
Elite
$149/month
For enterprises requiring unlimited threat intelligence.
✓ Unlimited scans — full 800K+ feed
✓ Unlimited brands per scan
✓ 500 sandbox sessions/day
✓ 50 NRD scans/day
✓ Unlimited Intel Dashboard
✓ Security Headers Checker (unlimited)
✓ Domain Scanner (unlimited)
✓ Unlimited BrandRadar AI
✓ All export formats
✓ Priority support + API
All plans include full threat intelligence feed access. Pro and Elite plans are activated manually by our team. Email support@phishpin.com to upgrade.
🛡 Security Headers Checker
Analyse any website's HTTP security headers · Get an instant grade · Fix recommendations included
🔐
Security Headers Checker — Pro Feature
Analyse any website's HTTP security headers, get an instant grade, and receive exact fix recommendations for each missing header. Available on Pro and Elite plans.
Enter Website URL
Fetching headers…
Analysing security configuration
—
Run a scan to see your grade
0
Passed
0
Missing
0
Warnings
🔒
Full report available on Pro & Elite
Free users see grade + 3 headers. Upgrade to unlock all 8 headers, values & fix recommendations.
ℹ About Security Headers
HTTP security headers are directives sent by your web server that instruct browsers how to behave. Missing headers are a leading cause of XSS, clickjacking, and data injection attacks. A grade of A or A+ means your site has strong protection. D or F means critical headers are absent. Add missing headers in your .htaccess file or server config — PhishPin shows you the exact fix for each.
🗑Clear All Session Data
🚨
Report Phishing / Fraud URL
Help protect the internet. Submit a suspicious URL or domain for our analysts to review. All reports are reviewed before publication.
— Select fraud type —▼
🎣 Phishing
🎭 Impersonation
📱 Social Media Scam
™ Brand & Trademark Abuse
📧 Email Scam
🛒 Fake Online Store
💰 Investment / Crypto Scam
🖥 Tech Support Scam
⚠️ Other
Max 3 reports/day per IP. Reports are reviewed before appearing publicly.
✅
Report Submitted!
Thank you for helping keep the internet safer. Our analysts will review your report shortly.