URL THREAT INTELLIGENCE · v0.5.0 · OPERATIONAL

The full anatomy of a phishing site,
one URL at a time.

ZeroPhish renders the page, runs twelve detection signals against the DOM, certificate chain, brand fingerprint and threat feeds, and returns a typed verdict. Built for security teams and product engineers.

100 scans / day · free · typical scan 2–4 s ·

try

REVIEW · MEDIUM CONFIDENCE

Review required

brand Medium scan id e2237c5a duration — signals 0 failing / 0

Risk score 0.00

0 / 100 · —

Was this verdict correct?

Tags

URL anatomy

https :// .

flagged registered domain path protocol / query

Indicators of compromise 3 · click any row to copy

Defang hxxps://example[.]com

URL	hxxps://medium[.]com/@steveruiz/using-a-javascript-library-without-type-declarations-in-a-typescript-project-3643490015f3
Brand	Medium
Scan ID	e2237c5a-5a90-4418-944f-b185d1aacc08

Detection signals 0 fail · 0 warn · 0 pass

No detection signals on this scan — it predates the signal pipeline. Re-analyze to capture them.

Captured page from scan

no screenshot

screenshot · captured at scan live page render

Brand impersonation visual + DOM analysis

No brand impersonation signals available.

Technical profile resolved at scan time

No technical metadata captured for this scan.

Analyst summary AI-generated

Initial scan heuristic + LLM

The web page is a blog post from medium.com about JavaScript and TypeScript, written by Steve Ruiz. The content is a technical discussion about programming languages and doesn’t indicate phishing activity. The domain is medium.com, which is a well-known legitimate site.

The full anatomy of a phishing site, one URL at a time.

Review required

The full anatomy of a phishing site,
one URL at a time.