Examining Phishing Websites and Scraping Information to Track Down Malicious Actors

Phishing attacks.

The number one thing that goes around at around every corporation in the world that has a mail server at this point in time, as how nature works some are better than others and some are much larger than others. However there is one thing that stands true to the test of time, they want your credentials.

Today, I want to go through a phishing attack that I have been given information about from an organization that was targeted by it. The main aim is to try and go through the following

What type of information can gleaned at from the Phishing Website. Who where most likely the Malicious Actors. Understand what the Malicious Actors are recovering from each attack. Come to a Evidence based Conclusion based on what has been uncovered.

Everything that I’ll go through this can be replicated in your own environment no matter your skill level in Security, in the future you might be called to do a report on a similar situation. Feel free to use this as an example of what you can perhaps expect.

With that all said and done, lets take our first step‘s.