The full anatomy of a phishing site,
one URL at a time.
ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.
Review required
| URL | hxxps://www[.]golem[.]de | |
| Brand | Golem.de | |
| Screenshot | https://cdn.zerophish.ai/77482d64-5dad-47b8-88aa-d246a2d63852.jpg | |
| Scan ID | 7fff9cd6-0627-48ff-a120-e1a260cc9c1e |
No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.
No brand impersonation signals available.
No technical metadata captured for this scan.
The site analyzed is Golem.de, a professional IT news site. The HTML, URL, and text extracted using OCR do not suggest any social engineering techniques typically used in phishing attacks such as alerting the user to problems with their account, offering unexpected rewards, informing the user of a missing package or additional payment required, displaying fake security warnings, or displaying fake logins with URLs not associated with its brand. The website seems to be a legitimate page and not a phishing site as the URL matches the domain name associated with Golem.de and there were no suspicious elements found in the HTML, URL, or text.