URLCrazy – Domain Typo Discovery Tool

URLCrazy is a tool that generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage. The tool can be used to cover the following requirements:

  • Detect typo squatters profiting from typos on your domain name
  • Protect your brand by registering popular typos
  • Identify typo domain names that will receive traffic intended for another domain
  • Conduct phishing attacks during a penetration test
URLCrazy - Domain Typo Discovery Tool
URLCrazy – Domain Typo Discovery Tool

Currently there are the following features with this program:

  • Generates 15 types of domain variants
  • Knows over 8000 common misspellings
  • Supports cosmic ray induced bit flipping
  • Multiple keyboard layouts (qwerty , azerty , qwertz ,dvorak)
  • Checks if a domain variant is valid
  • Test if domain variants are in use
  • Estimate popularity of a domain variant URLCrazy requires Linux and the Ruby interpreter.

There are several type of domain variation Character Omission ,Character Repeat,Adjacent Character Swap , Adjacent Character Replacement , Double Character Replacement ,Adjacent Character Insertion , Missing Dot , Strip Dashes , Singular or Pluralise , Common Misspellings , Vowel Swapping , Homophones , Homoglyphs , Wrong Top Level Domain , Wrong Second Level Domain and Bit Flipping. With each type there is an explanation and some examples about how the domain spelled.

You can read more and download this tool over here: https://www.morningstarsecurity.com/research/urlcrazy

Notify of
Inline Feedbacks
View all comments