# chitrathakur.github.io — MALICIOUS

> chitrathakur.github.io is a credential-harvesting GitHub Pages phishing domain flagged by 9 of 95 VirusTotal vendors. Avoid entering sensitive data.

## Summary
PhishDestroy identifies chitrathakur.github.io as an active credential-harvesting phishing domain at elevated risk status. The page poses as a legitimate GitHub-hosted resource but is in fact designed to harvest login credentials under false pretenses.


This domain was flagged by 9 of 95 VirusTotal security vendors and appears on 1 established blocklist, including OpenPhish. It resolves to IP address 185.199.108.153 and is registered through GitHub, Inc. The SSL certificate is issued by Let’s Encrypt, enabling HTTPS deception. Security telemetry confirms active abuse despite GitHub hosting.


Users should avoid interacting with chitrathakur.github.io and report any exposure to credentials entered on the site. GitHub Pages host may be unaware; content appears malicious and should be treated as unsafe. Immediately change any passwords entered on this domain and run a credential reset cycle. Flag the domain on personal security tools and blocklists to prevent further access.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registrar: GitHub, Inc.
- IP: 185.199.108.153

## Detection Status
- VirusTotal: 9 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 1 hits
  Lists: ["OpenPhish"]

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/scan/45e7c623-b111-4003-9a3a-c43eb8ff24b1
- PhishDestroy: https://phishdestroy.io/domain/chitrathakur.github.io/
- LLM endpoint: https://phishdestroy.io/domain/chitrathakur.github.io/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/chitrathakur.github.io/
Last updated: 2026-04-12