首页龙虾技能列表 › Phishing Detection — 技能工具

Phishing Detection — 技能工具

v1.0.0

Analyzes URLs using heuristic algorithms to detect and identify phishing threats in real time.

0· 91·0 当前·0 累计
by @krishnakumarmahadevan-cmd (ToolWeb)·MIT-0
下载技能包
License
MIT-0
最后更新
2026/3/21
安全扫描
VirusTotal
无害
查看报告
OpenClaw
可疑
medium confidence
The skill's stated purpose (heuristic phishing URL analysis) matches its instructions, but there are coherence and trust issues: it will send URLs to external endpoints, the source/owner information is sparse, and no credentials or privacy expectations are declared.
评估建议
This skill appears to be a thin wrapper around an external phishing-detection API and will send any URL you give it to third-party endpoints (api.mkkpro.com / toolweb.in). Before installing: 1) Confirm the provider and review its privacy/terms (no homepage/source is listed in metadata). 2) Do not submit sensitive URLs (with session tokens, PII, or internal links) until you verify data handling. 3) Check whether the API requires an API key—the skill doesn't declare one; if so, ensure a secure pri...
详细分析 ▾
用途与能力
Name and description match the provided API-style usage (POST /check-url) and threat-scoring outputs. However, the SKILL.md references third-party endpoints and a commercial provider (toolweb.in / api.mkkpro.com) but the skill metadata does not declare any required credentials or a primaryEnv; this could be an oversight or imply the API is public. The missing homepage/source information and cryptic owner ID reduce trust in provenance.
指令范围
The SKILL.md tells the agent to submit user-supplied URLs to external API endpoints. That is expected for a remote phishing-analysis service, but it means potentially sensitive URLs (including query strings, tokens, or PII) will be transmitted off-host. The instructions do not define privacy/retention, nor do they require or document authentication—so it's unclear how data is handled or who receives it.
安装机制
Instruction-only skill with no install spec, no code files to execute, and no binaries required. This minimizes local write/execute risk.
凭证需求
The skill declares no required environment variables or credentials despite documenting an external API and paid pricing plans. If the gateway/api actually requires an API key, the skill should declare a primaryEnv; the omission could be benign (public API) or a configuration oversight. No other unrelated credentials or system paths are requested.
持久化与权限
The skill does not request persistent presence (always: false) and does not include installation steps that modify agent/system configuration.
安全有层次,运行前请审查代码。

License

MIT-0

可自由使用、修改和再分发,无需署名。

运行时依赖

无特殊依赖

版本

latestv1.0.02026/3/21

- Initial release of Heuristic Phishing Detection API. - Provides real-time phishing risk analysis for any submitted URL using heuristic algorithms. - Returns detailed results including risk score, threat indicators, and confidence level. - Includes a simple POST /check-url endpoint for integration. - Usage examples, request and response formats, and pricing plans are documented. - Designed for integration with security tools, SIEM platforms, and automated workflows.

● 无害

安装命令 点击复制

官方npx clawhub@latest install phishing-detection
镜像加速npx clawhub@latest install phishing-detection --registry https://cn.clawhub-mirror.com

技能文档

Heuristic Phishing Detection is a security-focused API that analyzes suspicious URLs to identify phishing attacks and malicious links. Using advanced heuristic algorithms, the tool examines URL structure, domain characteristics, and behavioral patterns to determine threat likelihood without relying solely on blocklists.

This API is ideal for security teams, email filtering systems, browser extensions, and web applications that need to protect users from phishing campaigns. It provides fast, accurate risk assessment for URLs encountered in emails, messages, search results, and web content, enabling proactive threat prevention before users interact with malicious sites.

Key capabilities include real-time URL analysis, heuristic-based threat detection, and detailed risk scoring. The tool integrates seamlessly into security workflows, SIEM platforms, and automated incident response systems.

# Usage

Sample Request

{
  "url": "https://secure-paypal-verify.com/login"
}

Sample Response

{
  "url": "https://secure-paypal-verify.com/login",
  "is_phishing": true,
  "risk_score": 0.92,
  "threat_indicators": [
    "homograph_domain",
    "suspicious_tld",
    "brand_impersonation"
  ],
  "confidence": 0.95,
  "analysis_timestamp": "2024-01-15T10:32:45Z"
}

# Endpoints

POST /check-url

Analyzes a provided URL for phishing characteristics and returns a threat assessment.

Method: POST

Path: /check-url

Description: Submits a URL for heuristic analysis to determine phishing risk. The API examines domain structure, SSL certificate patterns, content indicators, and known phishing signatures.

Parameters

NameTypeRequiredDescription
urlstringYesThe complete URL to analyze, including protocol (http:// or https://). Maximum 2048 characters.

Request Body

{
  "url": "string"
}

Response (200 OK)

Content-Type: application/json

The response contains phishing detection results with risk indicators:

{
  "url": "string",
  "is_phishing": "boolean",
  "risk_score": "number (0-1)",
  "threat_indicators": ["array of strings"],
  "confidence": "number (0-1)",
  "analysis_timestamp": "string (ISO 8601)"
}

Response Fields:

FieldTypeDescription
urlstringEcho of the submitted URL
is_phishingbooleanTrue if phishing detected, false otherwise
risk_scorenumberNumeric risk assessment from 0.0 (safe) to 1.0 (confirmed phishing)
threat_indicatorsarrayList of detected threat patterns (e.g., homograph_domain, suspicious_tld, brand_impersonation)
confidencenumberConfidence level of the analysis from 0.0 to 1.0
analysis_timestampstringISO 8601 timestamp of when analysis was performed

Response (422 Validation Error)

Content-Type: application/json

Returned when request validation fails:

{
  "detail": [
    {
      "loc": ["body", "url"],
      "msg": "field required",
      "type": "value_error.missing"
    }
  ]
}

# Pricing

PlanCalls/DayCalls/MonthPrice
Free550Free
Developer20500$39/mo
Professional2005,000$99/mo
Enterprise100,0001,000,000$299/mo
# About

ToolWeb.in — 200+ security APIs, CISSP & CISM, platforms: Pay-per-run, API Gateway, MCP Server, OpenClaw, RapidAPI, YouTube.

# References

  • Kong Route: https://api.mkkpro.com/security/phishing-detection
  • API Docs: https://api.mkkpro.com:8005/docs
数据来源:ClawHub ↗ · 中文优化:龙虾技能库
OpenClaw 技能定制 / 插件定制 / 私有工作流定制

免费技能或插件可能存在安全风险,如需更匹配、更安全的方案,建议联系付费定制

了解定制服务