forked from cunnie/sslip.io
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathblocklist.txt
26 lines (22 loc) · 1.31 KB
/
blocklist.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
# List of "Forbidden" (blocked) names & CIDRs
# This is a list of forbidden names and CIDRs that are often used in phishing
# attacks. We won't resolve these hostnames to their embedded IP address (e.g.
# we won't resolve "raiffeisen.94.228.116.140.sslip.io" to 94.228.116.140);
# instead, we'll resolve it to one of our server's, ns-aws.sslip.io's, IP
# addresses, 52.0.56.137 or 2600:1f18:aaf:6900::a. Similarly, we won't resolve
# nf-43-134-66-67.sslip.io to 43.134.66.67 because it falls within one of our
# blocked CIDRs (43.134.66.67/24).
# Forbidden names are resolved as expected for private networks (e.g.
# "raiffeisen.192.168.0.1.sslip.io" resolves to 192.168.0.1) because they
# aren't publicly accessible & thus can't be used for phishing attempts.
# File format: blank lines are ignored, "#" are comments and are ignored. One
# name or CIDR per line.
raiffeisen # https://www.rbinternational.com/en/homepage.html
43-134-66-67 # Netflix, https://nf-43-134-66-67.sslip.io/sg
43.134.66.67/24 # Netflix
2601:646:100:69f7:cafe:bebe:cafe:bebe/112 # personal (Comcast) IPv6 range for testing blocklist
139.198.158.74/32 # @yongzhi-weee: not obtain/acquiring a ICP license
20.55.32.72 # hxxps://bofa-tablas-v2.20-55-32-72[.]sslip[.]io/#/user
91.107.178.82/32 # Linkedin Phishing
45.82.251.70/32 # ??
68.183.106.84/32 # EasyWeb Login