JS Clone Honeytoken Enterprise
A JS Clone honeytoken protects against site cloning attacks, where an attacker copies your login page or marketing site to run phishing campaigns against your users. The snippet fires silently when the cloned page is visited.
Category: Anti-phishing
Configuration
| Option | Required | Description |
|---|---|---|
| Note | Yes | Where you embedded the snippet |
| Domain | Yes | The legitimate domain the snippet protects (e.g. example.com) |
After creation
Copy the JavaScript code from the wizard. The wizard may offer an obfuscated version for production use.
Placement examples
Add the snippet to every public-facing page an attacker might clone:
- Your login page, password reset page, and any page that collects credentials or personal data
- Your main site template or layout component so it is automatically inherited by all pages
If someone clones the page and leaves the snippet in place, visits to the clone trigger an alert.
