search

revoltchat / revite

Revolt client built with Preact.
https://app.revolt.chat
GNU Affero General Public License v3.0
870 stars 209 forks source link

Show a warning on malicious domains #182

Closed ryanalexander closed 1 year ago

ryanalexander commented 3 years ago

Check against a list like virustotal.com to check for a malicious domain.

These domains should show a red warning under the embed saying the link could be dangerous

Aaron2550 commented 2 years ago

What about checking domains via the API of URLhaus? Unlike Virustotal, their API is not limited to 500 Requests per day and they offer downloads for their Lists which means they could be cached incase their API ever goes down.

SkyfallWasTaken commented 2 years ago

Discord does have a list of phishing domains (hashed with SHA256) While they are obviously tailored to Discord, it could at least stop a few Steam scams etc.

ryanalexander commented 2 years ago

https://api.syrus.gg/workers/safelink?site=

Can use that, it will catch all steam scam links

insertish commented 1 year ago

Closing due to rewrite, marking as potential issue in future by linking to https://github.com/revoltchat/frontend/issues/134.