back to home

MetaMask / eth-phishing-detect

Utility for detecting phishing domains targeting Web3 users

1,263 stars
1,056 forks
128 issues
TypeScriptJavaScriptShell
Chat with CodebaseArchitecture ScanSecurity AuditExplain Codebase

AI Architecture Analysis

This repository is indexed by RepoMind. By analyzing MetaMask/eth-phishing-detect in our AI interface, you can instantly generate complete architecture diagrams, visualize control flows, and perform automated security audits across the entire codebase.

Our Agentic Context Augmented Generation (Agentic CAG) engine loads full source files into context on-demand, avoiding the fragmentation of traditional RAG systems. Ask questions about the architecture, dependencies, or specific features to see it in action.

Source files are only loaded when you start an analysis to optimize performance.
Click here to launch the interactive analysis workspace

Embed this Badge

Showcase RepoMind's analysis directly in your repository's README.

[![Analyzed by RepoMind](https://img.shields.io/badge/Analyzed%20by-RepoMind-4F46E5?style=for-the-badge)](https://repomind.in/repo/MetaMask/eth-phishing-detect)
Preview:Analyzed by RepoMind

Repository Overview (README excerpt)

Crawler view

eth-phishing-detect List of malicious domains targeting Web3 users. For checking why a given domain was blocked, there is a third-party search tool maintained by ChainPatrol. Blocking Policy We are constantly evolving the ideal policy that guides this list, but a few clearly defined rules have emerged. We will be quick and decisive to block websites that: • Impersonate other known and established sites. • Use their interfaces to collect user signing keys (especially cryptocurrency keys) and send them back to home servers. There are other grounds for blocking, and we will ultimately do our best to keep our users safe. Basic usage UPDATE: The phishing detector has been moved here. Contributions To keep a tidy file, use the CLI or library functions to modify the list. Adding new domains Removing existing domains Safeguards We maintain a list of domains pulled from various sources in . Each file is plaintext with one host per domain. These domains are used to reduce the risk of false positives. If you need to block a domain that is featured on one of these lists, you'll need to add a bypass to . To update the lists, run . Note that you'll need a CoinMarketCap Pro API key. Auditing submissions & removals Running the command below will pull all pull requests associated to example.com.