OpenPhish FAQ

What is OpenPhish?
OpenPhish launched in June 2014 as a result of a three-year research project on phishing detection. The research yielded a set of autonomous algorithms for detecting zero-day phishing sites. These algorithms form a self-contained kernel that can tell whether a given URL is a phish or not. Essentially, OpenPhish is the algorithmic kernel complemented with data extraction and analysis functionalities for generating various feeds.
How can I report phishing URLs?
Primarily, we have two methods of reporting phishing URLs to us. The first is through our Data Partnership Initiative, which is aimed mostly towards organizations with medium to high volumes of data. The second method is to report via email. If you are interested in sharing your data, please contact us at
How can I remove my website from your feed?
The short answer - you can't. OpenPhish neither maintains its own blacklist nor can remove your website from third party blacklists. OpenPhish only provides a feed of exact live phishing URLs and never flags the entire website/domain as malicious. If you have questions about a specific URL related to your website, please email us at
How can I report a False Positive?
First, please refer to the False Positive Feed to check if we are already aware of the false positive. If the URL is not in the feed and you believe that we incorrectly identified a phishing URL, please let us know at
What are the Terms of Use?
Any data provided by OpenPhish via its site and feeds can be used for non-commercial and internal business purposes only. For any other commercial use of the data, you must obtain OpenPhish's written permission in advance. OpenPhish provides this data "as is" and disclaims any and all warranties, whether express or implied. In no event will OpenPhish be liable to you or to any third party for any direct, indirect, incidental, consequential, special or exemplary damages or lost profit resulting from any use or misuse of this data. For any questions, please contact us.