zerophish / console
Register Sign in
URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL

The full anatomy of a phishing site,
one URL at a time.

ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.

scan
100 scans / day · free · typical scan 2–4 s ·
try
Result scan b65356a5
Scan another →
CACHED Showing previous scan from 514 d ago. Click Reanalyze to run a fresh scan.
PHISHING · MEDIUM CONFIDENCE

Phishing detected

brand unknown scan id b65356a5 duration signals 0 failing / 0
Risk score 0.90
90 / 100 · —
Tags
URL anatomy
https :// .
flagged registered domain path protocol / query
Indicators of compromise 4 · click any row to copy
URL hxxps://pelbagai-jawatankosong[.]xyz/portal12-76151/
Brand unknown
Screenshot https://cdn.zerophish.ai/606e89df-6602-4815-a2db-e9df4c07c0b6.jpg
Scan ID b65356a5-50f4-4173-b236-df6d56bb5e2e
Detection signals 0 fail · 0 warn · 0 pass

No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.

Captured page from scan
Captured page
screenshot · captured at scan live page render
Brand impersonation visual + DOM analysis

No brand impersonation signals available.

Technical profile resolved at scan time

No technical metadata captured for this scan.

Analyst summary AI-generated
Initial scan heuristic + LLM

The analyzed webpage appears to be a phishing website due to the following reasons:

  1. The domain name ‘pelbagai-jawatankosong.xyz’ doesn’t correlate with any known legitimate brand or organization.
  2. HTML content analysis reveals suspicious behavior, including forms for inputting personal data (i.e., ‘Nama Penuh Sesuai Mykad’, ‘Phone Number Telegram’).
  3. Messages such as ‘Hantar Resume Sekarang’ indicative of coercion technique are present in the webpage.
  4. It could not be determined from the URL, the HTML provided or the extracted text if there is a brand associated.