eth-phishing-detect
Utility for detecting phishing domains targeting Web3 users
Coldcast Lens
Eth-phishing-detect is MetaMask's open-source blocklist of 205,000+ phishing domains targeting crypto wallets. It's the defensive layer between your users and wallet drainers, seed phrase stealers, and fake swap interfaces. If you're building any Web3 frontend, checking URLs against this list is free insurance.
If you're building a dApp browser, wallet, or any Web3 interface that loads external URLs, integrate this blocklist. ChainPatrol is the commercial threat detection service with more sophisticated analysis. PhishFort offers managed phishing response. SEAL (Security Alliance) contributes threat intelligence directly to this list.
The catch: a blocklist is reactive, not proactive. New phishing domains appear faster than they get flagged — the gap between a domain going live and appearing on the list is where users get hurt. The list is massive but not exhaustive. And this only covers domain-level detection — it won't catch phishing that happens through legitimate domains via compromised frontends or malicious contract interactions.
License: Other
Review license manually.
Commercial use: ✗ Restricted
About
- Owner
- MetaMask (Organization)
- Stars
- 1,261
- Forks
- 1,059
- emerging
Explore Further
More tools in the directory
Get tools like this delivered weekly
The Open Source Drop — the best new open source tools, analyzed. Free.