The full anatomy of a phishing site,
one URL at a time.
ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.
Phishing detected
| URL | hxxps://www-mail-0utl00k-home010155567[.]webflow[.]io/ | |
| Brand | Outlook | |
| Screenshot | https://cdn.zerophish.ai/c88d64e9-93f4-4fff-b41e-ff0643611c18.jpg | |
| Scan ID | 77f1f044-8ea0-4e79-a494-bb98a13419b7 |
No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.
No brand impersonation signals available.
No technical metadata captured for this scan.
The site is definitely a phishing site. It features an URL that resembles that of Outlook but deviates in several ways to mislead unsuspecting users. The domain name is hosted on ‘webflow.io’ rather than being on a Microsoft-owned domain as one would expect for a legitimate Outlook webpage, making it highly suspicious. The site also contains login fields (marked as “Email or username” and “Password”), commonly seen in phishing attempts aiming to lure users to input their login credentials, aiding in credential theft. There’s no visible content that would make it seem like a legitimate Outlook site besides the misleading URL.