TOAMI (Casting Net): A Browser Extension Tool for Supporting Phishing Hunters

No ratings

Presented at CODE BLUE 2025 by

Yuichi Tsuboi

This presentation introduces “TOAMI,” a browser extension tool designed to assist phishing hunters. TOAMI is an open-source tool developed for phishing hunters to detect phishing sites in real-time. Unlike traditional phishing site detection, which primarily focuses on identifying corporate brand misuse, TOAMI analyzes phishing kits using Indicators of Kit (IoK) to identify malicious sites. As a browser extension, TOAMI enables anyone to easily conduct site investigations with minimal setup. When TOAMI is activated, investigation logs, site screenshots, and other relevant data are automatically collected and saved locally. Phishing sites often employ techniques like cloaking to prevent re-access to the same site. TOAMI’s functionality allows it to capture crucial evidence, such as screenshots, even when cloaking techniques are used, thereby avoiding issues like inaccessible sites or missing data.