Simply enter your domain name and any keywords unique to your organisation such as brands, phone numbers or address information. PhishDom then generates tens of thousands of possible variations of your domain name using the same tricks used by criminals. The variations include the use of different country TLDs, ‘lookalike’ domain names using letter replacement or punycodes, convincing prefixes/suffices and common typos.
Once this list is generated, PhishDom checks every single one for active website or email services. If a website is present, it is assessed and scored on a number of criteria including similarity to your website, malicious code, presence of keywords, etc.