Lots of Questions ( Your Life's Misery Short Version)!
NanduWasTaken opened this issue · 4 comments
Nandu Presents
Lots of Questions ( Your Life's Misery Short Version)!
Chapter 1: Why Life Exists?
- How do you find the phishing links?
- How do you verify that a domain is used for phishing (other than actually seeing people use the links to hack into people's account. Well you can't get this much large list of domains if you only found it that way)
- What if a domain was originally used for phishing but later change it into a non dangerous website for doing good deeds. Will you then remove the domain from the list if the owner of the domain contacted you personally?
- Does domains from the suspicious-list.json serve any purpose? I am pretty sure no one verifies the domain ever again after it is added to the suspicious-list.json to check wheather it surely is used for phishing. So doesn't it just serve as a safeguard for the domains in the suspicious-list.json if it is not ever moved into the main list.
Chapter 2: Why this world?
I also hate this!
Chapter 3: Who was he?
There is no restriction mentioned for submitting domains which are not used for phishing.
Chapter 4: Why me?
I don't understand what you meant by "Cause for some false positive flags ". By my 2 years of English education i think it meant that that domain was a friendly website but was accused of being a phishing website. Well if what I thought was correct, why does it still redirect me to a malware website?. If what I thought was wrong ignore the question.
Chapter 5: Why soul exist?
For people who don't know what this is this is .gitignore file. This file contains all the files and folders which will be ignored by GitHub so basically all the names of the folders and files won't be shown to you. This is used to hide .env file or config file to hide your bot token/secret, database username and password.
You will see here
package.json package-lock.json node_modules utils/
I want to know why is node_module is pushed into the respository (no one does that or Am I too stupid to know that?).
Chapter 6: Why Life Exists
And we should stop the @actions-user bot from steal the top contributer place from @nikolaischunk .
Forgive me for my grammar or spelling mistake!
BTW Admire my affords on styling this!
I also should get a award on best issue presented!
This is hilarious!!!
Thank you for brightening my day 😂
To answer your questions (there are a lot of them)
Chapter 1
- There are scanning services that check 24/7 on newly registered Domains if they could be used for phishing. There are other places where Domains are discord phishing links are being collected, so if you crosscheck them with the current list you can find matches that are not on the list yet.
- Tools like
https://urlscan.io/help you do that. Other than this often Domains get reported and then collected. - If this happens the Domain Owner can reach out to me.
- The purpose is, to provide a list of domains that are used for phishing in some way but not necessarily in connection with Discord. As the Repository name suggests, this is about Discord Phishing Links.
Chapter 2
Feel free to rewrite the Readme if this bothers you :)
Chapter 3
That is true, I should update the Contributing.md sometimes
Chapter 4
This domain is the cause of some false positive flags. translate this into your main language, it should make sense. (hopefully)
Chapter 5
Adding node modules is just a best practice. The other one is to ensure that if someone uses some additional npm packages to sort the package, for example, this is not pushable to the repository.
Chapter 6
True, but not sure how to do this.
Chapter 7
Very very well done Issue by you, kudos!
Love the Styling and the effort put into it!
Fair enough answers.
I will close this for now!
So long Nerds!!