PhishPondPhishing Tradecraft Intelligence

Attack · Detection · Validation

About PhishPond

The research desk for phishing tradecraft

PhishPond is a phishing tradecraft research desk, curated and edited by a security professional with 18 years of experience. It pulls signal from established security sources and GitHub, researches how modern phishing operations are built, run, and detected, and avoids the recycled filler that floods most security feeds. The author is Jose Rodriguez.

Research Mission

We research phishing tradecraft across both sides of the engagement: how operations are built and run, how adversary infrastructure evolves, where detections fail, and how to validate the controls meant to catch them. The goal is to help security teams understand how an attack actually works and what telemetry proves it.

Coverage prioritizes evidence-based analysis, operational realism, and concrete detection and validation outcomes for red teams, purple teams, detection engineers, threat hunters, and CTI researchers.

Research Standards & Ethics

  • Offensive and defensive tradecraft analysis with a detection and validation purpose
  • Authorized security research only — no turn-key abuse kits or live-target guidance
  • Every offensive analysis pairs with detection opportunities and gaps
  • Source-linked and evidence-first — high signal over hype