Developer Launches Free AI-Powered API to Detect Phishing Sites and Prompt Injection
A developer has built PhishVision, a free REST API that detects phishing websites by using a headless Chromium browser to visually analyze pages rather than relying on URL reputation databases. The tool captures screenshots and extracts both visible and hidden page text, then sends the data to GPT-4o for forensic analysis, returning a structured JSON verdict. Unlike traditional scanners, PhishVision is also designed to catch prompt injection attacks, where malicious hidden text targets AI agents embedded in webpages. The API is available on RapidAPI's free tier with a rate limit of 100 requests per 15 minutes per IP, and the full source code has been published on GitHub. Planned features include webhook alerts, browser fingerprint detection, PDF forensic reports, and batch URL scanning.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in