The full anatomy of a phishing site,
one URL at a time.
ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.
Review required
| URL | hxxps://revoke-cash-39s[.]pages[.]dev/ | |
| Brand | Revoke.cash | |
| Screenshot | https://cdn.zerophish.ai/00df4328-786b-41d8-80ea-c329cb28115e.jpg | |
| Scan ID | d2cedc06-0e88-4f79-814b-b70e2648d481 |
No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.
No brand impersonation signals available.
No technical metadata captured for this scan.
The website ‘Revoke.cash’ seems to be a clone of a presumably legit brand name ‘Revoke.cash’. It’s very likely the website might be used for phishing. It asks users to revoke permissions of wallets linked with decentralized exchanges and NFT marketplaces, an operation that could potentially give the website access to said wallets, if they are not careful. However, the content presented on the website and extracted via OCR doesn’t show the typical social engineering techniques used in phishing attacks, like alarming the user about a problem with their account or offering unexpected rewards. It rather provides some useful information about maintaining a wallet’s hygiene. Based on this information, it’s difficult to confidently classify this website as phishing or legitimate, thus the phishing score is relatively low.