@PhishKitTracker profile picture
PhishingKitTracker @PhishKitTracker

Project Paused 1/11/22, Tracked Threat Actor Emails in Phishing Kits. CC @PhishKitTracker if you find a #phishingkit , created by @neonprimetime

Joined May 2019
  • Tweets 831
  • Following 1
  • Followers 2,598
33 Photos and videos
Pinned Tweet
PhishingKitTracker@PhishKitTracker
10 May 2019
Fellow #phishingkit hunters I've moving #PhishingKitTracker over to it's own dedicated Twitter Account @PhishKitTracker CC @PhishKitTracker on twitter if you find a #threatactoremail in #phishingkit Thanks, @neonprimetime x.com/neonprimetime/status/1…

neonprimetime@neonprimetime
30 Nov 2018
#infosec community I've recorded the #threatactoremail from each #phishingkit for the last year & started tracking them out on @GitHub to share with you. My hope is this can somehow be used to fight the onslaught of #phishing seen daily See the list github.com/neonprimetime/Phi…
2
5
PhishingKitTracker retweeted
Jake | JCyberSec_@JCyberSec_
12 Jan 2022
Replying to @PhishKitTracker @ActorExpose @Jouliok @andpalmier @ANeilan @nullcookies @ozuma5119 @phishunt_io @sysgoblin @dubstard
This isn't goodbye but more of a shift in targeting. If you ever need anything feel free to DM me. I still regularly use your data so thanks for the hard work on the tracker over the last few years!
1
1
6
Hello fellow #phishingkit #phishing hunters. I have not been able to give the Phishing Kit Tracker (@PhishKitTracker) project the necessary time it requires & therefore have decided at this time to pause the project. Thank you for all your support throughout the years. 1/N

ALT Break Pause GIF by femtec alumnae e.v.

1
2
9
more replies
And for those still active and interested in #phishing #phishingkit #threatactoremail I recommend following some of the best phishing kit hunters in the business @ActorExpose @JCyberSec_ @actorexpose @SteveD3 6/N

ALT Awesome Youre Awesome GIF

2
4
7
I will keep fighting the good fight with my @neonprimetime handle and am glad to be a small part in the greater #infosec community! 7/7

ALT Power Rangers Hands In GIF
5
PhishingKitTracker retweeted
Jake | JCyberSec_@JCyberSec_
1 Dec 2021
KIT Intel is a tool for phishing kit research...at scale. 📁 Upload, Analyze, Cluster, and Research phishing kits like never before.
1
4
12
PhishingKitTracker retweeted
Jake | JCyberSec_@JCyberSec_
19 Nov 2021
So you want to learn about phishing kits 🧑‍🎓 🧵 In this thread I will highlight threat hunting skills and IoCs within phishing kits to look for ⤵️ Retweets are appreciated ♻️ 🔍Follow me for more #phishing intelligence @Jcybersec_
3
99
209
PhishingKitTracker retweeted
Jake | JCyberSec_@JCyberSec_
14 Jul 2021
Replying to @illegalFawn @malwrhunterteam @JAMESWT_MHT @dubstard @YourAnonRiots @andsyn1 @douglasmun @SwiftOnSecurity
This is a utoxic Office phishing kit. There should be 2 files on the root - License.txt maillist.txt The kit is complex with heavy obfuscation in place as well
2
6
19
PhishingKitTracker retweeted
Jake | JCyberSec_@JCyberSec_
28 Jun 2021
Replying to @SteveD3 @Ledtech3 @MalwareJake @nullcookies @dyngnosis @dave_daves @ANeilan @selenalarson
Always pivot - The second email address 'ricadojerry' has been linked to a large number of phishing kits targeting Office, Yahoo, DHL, and Gmail. Can be seen here in the archived @PhishKitTracker run by @neonprimetime Linked tweet - x.com/PaulWebSec/status/1117…
Paul Sec.jpeg .exe@PaulWebSec
14 Apr 2019
Replying to @neonprimetime @msftsecurity @AvidXchange @PhishStats
I added couple more phishing kits, enjoy :)
1
1
4
PhishingKitTracker retweeted
MalwareHunterTeam
@malwrhunterteam
22 Jun 2021
What you think, why Gmail still does nothing about the 1000s of phished credentials going to skids' Gmail inboxes daily? A: They dgaf. B: 3 char agencies of US prefer searching in those inboxes when they want access to somewhere than compromising themselves. C: A B.
18% A
6% B
76% C
357 votes • Final results
3
6
16
174 unique #threatactoremail added to @PhishKitTracker github since May 2020 100 @gmail (63%) 35 @yandexcom 21 @yahoo 7 @protonmail somebody with power at those email providers should #takethemdown ! github.com/neonprimetime/Phi… 1/n
3
6
14
Props to all who share #threatactoremail including ... @actorexpose @andpalmier @aneilan @cs0sf @marco_ramilli @neonprimetime @phishkittracker @phishunt_io @securereload @sysgoblin @jouliok to join the fun cc @PhishKitTracker & include exfil email & url in tweet 2/2

ALT We're In This Together GIF

2
8
PhishingKitTracker retweeted
neonprimetime@neonprimetime
29 Dec 2020
here is REAL #phishing many companies received last year urlscan.io/search/#sharepoin…
This tweet is unavailable
4
4
PhishingKitTracker retweeted
neonprimetime@neonprimetime
7 Dec 2020
another abused service to watch for is @piktochart for credential #phishing like Canva and Zizera urlscan.io/search/#create.pi… sample from a few days ago hxxps://create.piktochart[.]com/output/51172832-river-city-tax-consulting-llc urlscan.io/result/de91f2dd-0…
1
3
3
PhishingKitTracker retweeted
neonprimetime@neonprimetime
8 Dec 2020
did you know survey gizmo is now named @AlchemerHQ ? It’s still abused for cred #phishing though ! Email Subject: Check #<no> payment survey.alchemer[.]com/s3/6076800/The-Drainman-Inc-Invoice urlscan.io/result/befc66c5-2…
1
4
3
Load more