zerophish / console
Register Sign in
URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL

The full anatomy of a phishing site,
one URL at a time.

ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.

scan
100 scans / day · free · typical scan 2–4 s ·
try
Result scan 5326a301
Scan another →
CACHED Showing previous scan from 329 d ago. Click Reanalyze to run a fresh scan.
REVIEW · MEDIUM CONFIDENCE

Review required

brand WhatsMyName scan id 5326a301 duration signals 0 failing / 0
Risk score 0.00
0 / 100 · —
Tags
URL anatomy
https :// .
flagged registered domain path protocol / query
Indicators of compromise 4 · click any row to copy
URL hxxps://whatsmyname[.]app/
Brand WhatsMyName
Screenshot https://cdn.zerophish.ai/d838d98a-2edd-4901-b9de-b53da6ca5192.jpg
Scan ID 5326a301-8955-4ce8-b804-1028fe730599
Detection signals 0 fail · 0 warn · 0 pass

No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.

Captured page from scan
Captured page
screenshot · captured at scan live page render
Brand impersonation visual + DOM analysis

No brand impersonation signals available.

Technical profile resolved at scan time

No technical metadata captured for this scan.

Analyst summary AI-generated
Initial scan heuristic + LLM

The site appears to be a legitimate service known as WhatsMyName used for username enumeration across various platforms. The domain whatsmyname.app does not show signs or techniques often used in phishing attacks such as alerting the user to a problem with their account or offering unexpected rewards. Furthermore, the HTML contains numerous functional elements, category filters, and seems to be in association with the OSINT Combine. The authors don’t include notorious or famous phishing groups and the site contains rich metadata and relevant interactivity. Therefore, it’s unlike to be a phishing site.