WMC Insight+
Phishing URL Retrieval API
WMC Global's Phishing URL Retrieval API (PhishFeed API) is a threat intelligence tool that identifies and tracks malicious phishing activity, specifically focusing on brand impersonation and mobile-only threats. The service provides actionable, searchable data on phishing URLs and hosting locations that can be integrated into existing security platforms to block threats and enable take-down actions.In addition to URLs and impersonated brands, the PhishFeed API returns detailed infrastructure and threat actor metadata for each identified phishing attack. The following data points are provided, hosting infrastructure, attack characteristics, threat actor intelligence, and technical identifiers.
Phishing URL Scoring API
Phishing URL Scoring API (UrSULA API) is a high-volume, automated service designed to identify and score malicious, credential-stealing phishing URLs across various digital channels. By processing massive data volumes and integrating with existing security infrastructure, it provides actionable intelligence to block threats, such as redirects and phishing kits, in real-time
The Phishing URL Scoring API (UrSULA API) returns a JSON response identifying and verifying credential phishing URLs, including key data points such as the URL status, classification, a numerical threat score, a descriptive explanation, and the final landing page. In instances of processing failures, the API provides specific error codes and HTTP status details.
Phishing Kits API
Phishing Kits API (KITIntel) is a specialized platform that allows security teams to investigate, track, and disrupt phishing attacks by analyzing the underlying source code and tools, or "phishing kits". The tool enables deep, proactive analysis of WMC Global’s vast kit library to identify threat actor tactics and indicators of compromise for improved, automated defense. The API returns these data points, kit source code & assets, threat actor attribution, exfiltration details, kit publisher info, technical metadata, evasion & tactics.
Identities Retrieval API
The Identities Retrieval API (Compromised Credential Recovery (CCR) API) acts as an early-warning system that extracts stolen user data directly from active phishing infrastructure to prevent account takeover attacks. It provides real-time access to compromised credentials, phishing page URLs, targeted brand information, and threat-actor patterns. Following data points are provided, targeted identity data, financial & payment info, and infrastructure & context.Phishing Phone Numbers API
The Phishing Phone Numbers API (Mobile Feedback Loop (MFL) API) enables organizations to report, investigate, and disrupt malicious mobile communications like smishing and vishing. It provides investigative status updates, confirms malicious activity, and delivers intelligence on phone number suspensions. It returns and manages, investigation status, carrier & aggregator metadata, campaign identifiers, and actionable outcomes.
Phishing URL Submission API
The Phishing URL Submission API (URL Submission API) facilitates rapid, automated reporting of suspicious links to enhance threat intelligence and combat phishing attacks targeting brands and users. It provides immediate HTTP 200 status confirmation for accepted submissions, a unique identifier for tracking, and identifies unsupported MIME types for non-analyzable content. It returns, unique ticket ID, submission success confirmation, detailed scan results such as classification, risk scores, and threat types.