Phishers often create their kits by cloning the website of the brand they're targeting. Their goal is a perfectly standalone phishing kit, but the process is rarely perfect and so assets are often still loaded from the original source.
We can use this to find sites which are likely the result of cloning.
This is a companion discussion topic for the original entry at https://phish.report/IOK/learn/080-hotloaded-assets