12 Ways To Reveal Suspicious Shortened URLs!

Just the other day, I received a Twitter DM :

unidentified-url

I’m not familiar with the user, also a bit skeptic towards the link. Normally I would just pass but my curiosity prompt me to dig deeper. It doesn’t take long to reveal the actual location, yeah, some money-making site. Not a fan so let’s end the story here. But I got a valuable lesson that day, know what it is?

Spam, Phishing & Malware Triggered Links in Disguise!

Oh yes, malicious sites transforming themselves into friendly little shortened URLs, waiting to be clicked! Have you not noticed the recent phishing and hijacking cases via click-fraud?? Nah.. it doesn’t seem like something that’ll happen to us, right? WRONG! I don’t know about you, but I find myself getting a little too comfortable with the links sending my way. I figured there’s a need to spread a little awareness about such matter.

No Worries! I Know How To Deal With It! (but.. Are You??)

So we were told that Twitter is going to block those bad URLs. Great effort, but doesn’t mean we should take this lightly. If you were like me, once thought the below methods are enough to solve our problems than think again:

a. Twitter Search Expand Feature

preview-shortened-url-in-twitter-search

We LOVE the ‘expand’ feature! Safe and ease to use. Blame me for being the party pooper but not all URL shorteners could be revealed. Don’t believe me? try them out:

    Cli.gs / Tr.im / Su.pr / Digg.com / Ow.ly / Tweak.tk

b. Tweetdeck URL Preview Feature

tweetdeck-shortened-url-preview

Tweetdeck allows previewing for the link before navigates. Looks safe enough, but what if the link was converted from another shortened URL? It will be displayed as above, the original site address is untraceable, unless you check it manually.

c. FriendFeed Shows Complete URLs

friendfeed

This is much better. FriendFeed shows the complete URLs for all the updates. But what if the link was sent to you via Twitter’s Direct Message? It won’t be shown in the public conversation. How do you go from there? Obviously we need more help than we think.

12 Ways To Expand/Preview Suspicious Shortened URLs

Call me busybody, but I actually checked these 12 apps for the task with below URL Shorteners, sorry I can’t cover ALL that existed. Here’s the overall results I got:

shorten url table - updated 071109

I grouped the URL Shorteners for easier explanations:

Category A (common) :   tinyurl, bit.ly, cli.gs, tr.im, is.gd

Category B (new/framed etc) :   su.pr, digg, owly, tweak.tk

**well what do you know, seems like my previous blog posts still appear in good old Blogger template :-)**

i) Powerful Pack (GREEN): Detectable for ALL category A & B.

#1 PrevURL

**Update: The domain is no longer available. Service terminated.**

prevurl-show-thumbnail

  • thumbnail to preview the original web page.
  • comes with ‘search plugin’ to be installed on your browser. Just copy and paste the shortened URL in the box and hit ‘search’to be brought to the PrevURL site.
    prevurl-seach-plugin

#2 Longurl

longurl

  • thumbnail to preview web page.
  • plugin available for Firefox: Long URL Mobile expander 2.0.0 (will be discussed in plugin section later).

#3 TheRealURL

therealurl

  • no thumbnail or plugin yet works like a charm. Simple and easy to navigate.

ii) Medium pack (YELLOW): Works perfectly well with category A; minor limitations for B

#4 Sucuri

digg-with-question-mark-sucuridigg-with-no-question-mark-sucuri

  • no thumbnail previewing.
  • special feature: to check whether the real web page is blacklisted via Google Safebrowsing and Siteadvisor.
  • has problem detecting Digg.com-shortened URL with question mark ‘?’  in the midst – for example: http://digg.com/d3ym80?t (10/10 trial attempts).

#5 Unshortme

unshortme

  • Simple page layout without preview.
  • Unable to detect Ow.ly.

#6 Unshortn

unshortn

  • allows thumbnail preview.
  • bookmarklet available. When clicked, all shortenened URLs on that particular page will expand themselves to original web addresses.
  • unshortn-bookmarklet

  • Minor setbacks: To ensure the link converts successfully, preferably paste the shortened URL on top of your web browser then hit ‘Enter’, instead of the ‘Unshorn it’ box’.For Instance: http://unshortn.com/http://su.pr/2gdfR1
  • Unable to detect Su.pr.

#7 Urlsnoop

urlsnoop

  • simple layout with thumbnail preview. No bookmarklet available.
  • unable to detect Digg.com

#8 Unshorten

unshorten

  • no plugins or preview feature.
  • Unable to retrieve site shortened by Digg.com

#9 ExpandMyURL

expandmyurl

  • provides bookmarklet on browser: revealing the traceable shortened URLs with green colour. When clicked will redirect to expandmyurl for URL expansion.
    expandmyurl-indication
  • Unable to reveal sites shortened by Tweak.tk.

** ExpandMyURL has improved their service to enable shortening for : Su.pr, Ow.ly. A fantastic improvement to promote them from limited to medium pack. Thanks to Alex for the updating mentioned in the comment below. Good job. **

iii) Limited Pack (ORANGE): Works well with Category A; Seriously lacking for B detections.

#10 Untiny

untiny

  • provides multiple add-ons from bookmarklet, firefox plugin to firefox search.
  • unable to retrieve sites from Su.pr, Digg.com

Firefox Plugins:

firefox-plugins-to-expand-preview-url-shorteners

#11 Long URL Please 0.4.1

auto-reveal-with-longurl-mobile-expand-plugin

  • once installed and enabled, reveals the actual location for the shortened URLs. Works perfectly in Twitter, Facebook etc.
  • mostly it is effective in expanding Digg.com, but occasionally not.
  • unable to retrieve: Tweak.tk

#12 Long URL Mobile expander 2.0.0

Firefox-longurl-plugin

  • when hover the mouse over the link, actual web address will be revealed.
  • unable to retrieve: Su.pr, Tweak.tk.

What About URL converted from URL Shortener:

Original URL detectable for most applications above. Except for these 3: Sucuri, Urlsnoop & Unshortn.

For example, I’ve shrinked the URL using :

http://tinyurl.com/kqocvk , then again, to

http://bit.ly/vZpuf

After tested, here are the results:

sucuri test with shortened url

Sucuri.net shows tinyurl as original web address

url-shortener-or-real-web-url-detected

URL Shorteners that allowing preview

Some URL shorteners provide settings to enable preview for their service when activated. For instance: TinyURL and Trunc.it.

So What Are Your Takes?

Did you ever experience any click-frauds? How do you normally deal with suspicious links that sent in your way? Love to hear your thoughts.

#9 ExpandMyURL

expandmyurl

  • provides bookmarklet on browser: revealing the traceable shortened URLs with green colour. When clicked will redirect to expandmyurl for URL expansion.
    expandmyurl-indication
  • unstable results for is.gd; while failed to reveal sites shortened by Su.pr, Tweak.tk, Ow.ly.


Web Hosting
66 Comments

Add a Comment

Your email address will not be published. Required fields are marked *