I was thinking about something pretty similar -- rather than just try to overload the server, make it more difficult for phisherpeople to figure out which data is legitimate.

Realistically, I don't think I'd do it though -- who knows what 0 days you are putting on your box when you connect to those sites.