http/osint/phishing/visual-studio-code-phish.yaml

id: visual-studio-code-phish

info:
  name: visual studio code phishing Detection
  author: rxerium
  severity: info
  description: |
    A visual studio code phishing website was detected
  reference:
    - https://visualstudio.com
  metadata:
    max-request: 1
  tags: phishing,visual-studio-code,osint
http:
  - method: GET
    path:
      - "{{BaseURL}}"

    host-redirects: true
    max-redirects: 2

    matchers-condition: and
    matchers:
      - type: word
        words:
          - 'Visual Studio Code is a code editor redefined and optimized for building and debugging modern web and cloud applications.  Visual Studio Code is free and available on your favorite platform - Linux, macOS, and Windows.'
          - 'Visual Studio Code - Code Editing. Redefined'
        condition: and

      - type: status
        status:
          - 200

      - type: dsl
        dsl:
          - '!contains(host,"visualstudio.com")'
# digest: 4a0a0047304502206389952a04cb771a897707a90dffb5230a152cb8163a5ba113cc264ea3101236022100ba78e42764b7359f8f2863f798099f1d42a60ce03fe366ef04d6825fef885968:922c64590222798bb761d5b6d8e72950
more templates 2024-02-17 19:59:25 +00:00			`id: visual-studio-code-phish`

TemplateMan Update [Sat Mar 23 09:28:19 UTC 2024] :robot: 2024-03-23 09:28:19 +00:00			`info:`
			`name: visual studio code phishing Detection`
			`author: rxerium`
			`severity: info`
			`description: \|`
			`A visual studio code phishing website was detected`
			`reference:`
			`- https://visualstudio.com`
			`metadata:`
			`max-request: 1`
updated osint tag 2024-03-08 12:46:17 +05:30			`tags: phishing,visual-studio-code,osint`
more templates 2024-02-17 19:59:25 +00:00			`http:`
			`- method: GET`
			`path:`
			`- "{{BaseURL}}"`

			`host-redirects: true`
			`max-redirects: 2`

			`matchers-condition: and`
			`matchers:`
			`- type: word`
			`words:`
			`- 'Visual Studio Code is a code editor redefined and optimized for building and debugging modern web and cloud applications. Visual Studio Code is free and available on your favorite platform - Linux, macOS, and Windows.'`
			`- 'Visual Studio Code - Code Editing. Redefined'`
misc formatting changes 2024-02-24 16:33:10 +00:00			`condition: and`

more templates 2024-02-17 19:59:25 +00:00			`- type: status`
			`status:`
			`- 200`

			`- type: dsl`
			`dsl:`
Auto Template Signing [Fri Mar 8 08:09:59 UTC 2024] :robot: 2024-03-08 08:09:59 +00:00			`- '!contains(host,"visualstudio.com")'`
chore: sign templates 🤖 2025-08-15 02:00:53 +00:00			`# digest: 4a0a0047304502206389952a04cb771a897707a90dffb5230a152cb8163a5ba113cc264ea3101236022100ba78e42764b7359f8f2863f798099f1d42a60ce03fe366ef04d6825fef885968:922c64590222798bb761d5b6d8e72950`