Every SSL certificate issued anywhere on the internet is publicly logged the moment it's created (Certificate Transparency). This watches that stream in real time and flags domains that combine a well-known brand name with suspicious modifiers like "login," "verify," or "secure" — a classic phishing-kit pattern.
| Domain | Matched brand | Certificate issuer | Detected |
|---|---|---|---|
| Loading… | |||
A domain appearing here means a certificate was issued for it matching a watched pattern — it does not by itself confirm malicious intent (legitimate companies occasionally register similar-sounding domains too). Treat this as a triage starting point, not a verdict.