RRepoGEO

REPOGEO REPORT · LITE

emalderson/ThePhish

Default branch master · commit c8aedee1 · scanned 6/28/2026, 2:18:25 PM

GitHub: 1,351 stars · 199 forks

Scan history for this repo

Score trend below includes all ready runs (older left, newer right; scroll horizontally if needed). The table is collapsed by default—expand for newest-first rows, 10 per page.

Score trend (left → right: older → newer)

2 ready scans. Expand the table below for newest-first rows (10 per page, paginated).

AI VISIBILITY SCORE
35 /100
Critical
Category recall
0 / 2
Not recommended in any query
Rule findings
1 pass · 1 warn · 0 fail
Objective metadata checks
AI knows your name
3 / 3
Direct prompts that named your repo
HOW TO READ THIS REPORT

Action plan is what to do next — copy-pasteable changes prioritized by impact. Category visibility is the real GEO test: when a user asks an AI a brand-free question that should surface emalderson/ThePhish, does the AI actually recommend you — or your competitors? Objective checks verify the metadata signals AI engines weight first. Self-mention check detects whether AI even knows you exist by name.

Action plan — copy-paste fixes

3 prioritized changes generated by gemini-2.5-flash. Mark items done after you ship the fix.

OVERALL DIRECTION
  • highreadme#1
    Reposition the README's opening paragraph to clarify its standalone, open-source nature

    Why:

    CURRENT
    ThePhish is an automated phishing email analysis tool based on TheHive, Cortex and MISP. It is a web application written in Python 3 and based on Flask that automates the entire analysis process starting from the extraction of the observables from the header and the body of an email to the elaboration of a verdict which is final in most cases.
    COPY-PASTE FIX
    ThePhish is an **open-source** automated phishing email analysis tool and web application, written in Python 3 and Flask. It provides comprehensive, automated analysis of suspicious emails, extracting observables from headers and bodies to generate a final verdict. While it integrates seamlessly with TheHive, Cortex, and MISP, ThePhish functions as a standalone solution for security researchers and incident responders.
  • highhomepage#2
    Add the repository URL as the project homepage

    Why:

    COPY-PASTE FIX
    https://github.com/emalderson/ThePhish
  • mediumtopics#3
    Refine topics to include 'open-source', 'email-analysis', 'automation', and 'verdict-generation'

    Why:

    CURRENT
    attack, cyberdefense, cybersecurity, detection, digital-forensics, email, free, incident-response, indicators-of-compromise, malware, misp, phishing, phishing-detection, python, script, thehive, thehive4, thehive4py, threat-intelligence, webapp
    COPY-PASTE FIX
    attack, cyberdefense, cybersecurity, detection, digital-forensics, email, email-analysis, free, incident-response, indicators-of-compromise, malware, misp, open-source, phishing, phishing-detection, python, script, thehive, thehive4, thehive4py, threat-intelligence, webapp, verdict-generation, automation

Category GEO backends resolved for this scan: google/gemini-2.5-flash, deepseek/deepseek-v4-flash

Category visibility — the real GEO test

Brand-free queries asked to google/gemini-2.5-flash. Did AI recommend you, or someone else?

Same questions for every model — switch tabs to compare answers and rankings.

Recall
0 / 2
0% of queries surface emalderson/ThePhish
Avg rank
Lower is better. #1 = top recommendation.
Share of voice
0%
Of all named tools, what % are you?
Top rival
Proofpoint Targeted Attack Protection (TAP) Email Protection
Recommended in 1 of 2 queries
COMPETITOR LEADERBOARD
  1. Proofpoint Targeted Attack Protection (TAP) Email Protection · recommended 1×
  2. Microsoft Defender for Office 365 (MDO) · recommended 1×
  3. Mimecast Email Security with Targeted Threat Protection · recommended 1×
  4. Barracuda Email Protection · recommended 1×
  5. Valimail · recommended 1×
  • CATEGORY QUERY
    What tools automate phishing email analysis and generate verdicts from email headers?
    you: not recommended
    AI recommended (in order):
    1. Proofpoint Targeted Attack Protection (TAP) Email Protection
    2. Microsoft Defender for Office 365 (MDO)
    3. Mimecast Email Security with Targeted Threat Protection
    4. Barracuda Email Protection
    5. Valimail
    6. Cofense Triage
    7. SpamAssassin

    AI recommended 7 alternatives but never named emalderson/ThePhish. This is the gap to close.

    Show full AI answer
  • CATEGORY QUERY
    Looking for a Python web application to automate incident response for suspicious emails.
    you: not recommended
    AI recommended (in order):
    1. TheHive Project (TheHive-Project/TheHive)
    2. Cortex (TheHive-Project/Cortex)
    3. MISP (MISP/MISP)
    4. Shuffle (frikky/Shuffle)
    5. Flask (pallets/flask)
    6. Django (django/django)
    7. email
    8. mailparser (SpamScope/mailparser)
    9. YARA-Python (VirusTotal/yara-python)
    10. requests (psf/requests)
    11. VirusTotal
    12. URLScan.io
    13. celery (celery/celery)
    14. SQLAlchemy (sqlalchemy/sqlalchemy)
    15. Security Onion (Security-Onion-Solutions/securityonion)
    16. Playbook
    17. Demisto
    18. Palo Alto Networks Cortex XSOAR

    AI recommended 18 alternatives but never named emalderson/ThePhish. This is the gap to close.

    Show full AI answer

Objective checks

Rule-based audits of metadata signals AI engines weight most.

  • Metadata completeness
    warn

    Suggestion:

  • README presence
    pass

Self-mention check

Does AI even know your repo exists when asked about it directly?

  • Compared to common alternatives in this category, what is the core differentiator of emalderson/ThePhish?
    pass
    AI named emalderson/ThePhish explicitly

    AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?

  • If a team adopts emalderson/ThePhish in production, what risks or prerequisites should they evaluate first?
    pass
    AI named emalderson/ThePhish explicitly

    AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?

  • In one sentence, what problem does the repo emalderson/ThePhish solve, and who is the primary audience?
    pass
    AI named emalderson/ThePhish explicitly

    AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?

Embed your GEO score

Drop this badge into the README of emalderson/ThePhish. It auto-updates whenever the report is rescanned and links back to the latest report — easy public proof that you care about AI discoverability.

RepoGEO badge previewLive preview
MARKDOWN (README)
[![RepoGEO](https://repogeo.com/badge/emalderson/ThePhish.svg)](https://repogeo.com/en/r/emalderson/ThePhish)
HTML
<a href="https://repogeo.com/en/r/emalderson/ThePhish"><img src="https://repogeo.com/badge/emalderson/ThePhish.svg" alt="RepoGEO" /></a>
Pro

Subscribe to Pro for deep diagnoses

emalderson/ThePhish — Lite scans stay free; this card itemizes Pro deep limits vs Lite.

  • Deep reports10 / month
  • Brand-free category queries5 vs 2 in Lite
  • Prioritized action items8 vs 3 in Lite