PhishNet: Predictive Blacklisting to Detect Phishing Attacks

Prakash, Pawan; Kumar, M. Sathish; Kompella, Ramana Rao; Gupta, Manika

doi:10.1109/infcom.2010.5462216

Cited by 302 publications

(163 citation statements)

References 3 publications

Supporting

Mentioning

149

Contrasting

Unclassified

Order By: Relevance

“…For instance, Prakash et al (2010) proposed PhishNet to actively predicted new malicious URL from existing blacklist entries. This was achieved by processing URLs and producing multiple variations of the same URL using IP address equivalence, query string substitution, brand name equivalence, directory structure similarity and top level domain replacement.…”

Section: Literature Reviewmentioning

confidence: 99%

A Lightweight Anti-Phishing Technique for Mobile Phone

Orunsolu¹,

Alaran²,

Adebayo³

et al. 2017

AIP

View full text Add to dashboard Cite

Mobile phones have become an essential device for accessing the web. This is due to the advantages of portability, lower cost and ease. However, the adoption of mobile phones for online activities is now being challenged by myriads of cybercrimes. One of such crimes is phishing attack. In this work, a lightweight anti-phishing technique is proposed to combat phishing attacks on mobile devices. This is necessary because these mobile platforms have increased the attack surface for phishers while diminishing the effectiveness of existing countermeasures. The proposed approach uses a number of URL behavior to determine the status of a website based on frequency analysis of extracted phishing features from PhishTank. To increase the detection power of unknown pattern, a machine learning algorithm called Support Vector Machine is adopted. The results indicated that the approach is very efficient against phishing sites with negligible false negatives.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

A Lightweight Anti-Phishing Technique for Mobile Phone

Orunsolu¹,

Alaran²,

Adebayo³

et al. 2017

AIP

View full text Add to dashboard Cite

show abstract

“…[15] have worked on the 27 phishing criteria using the concept of Neural Network. The same criteria have been taken by other researchers to find the solution from phishing attack [16][17][18][19][20]. A survey on the anti-phishing techniques has been done which is helpful in this study [32].…”

Section: Related Work On Browser Based Anti-phishing Toolmentioning

confidence: 99%

Experimental Analysis of Browser based Novel Anti-Phishing System Tool at Educational Level

Gupta¹,

Shukla²

2016

IJITCS

View full text Add to dashboard Cite

Abstract-In the phishing attack, the user sends their confidential information on mimic websites and face the financial problem, so the user should be informed immediately about the visiting website. According to the Third Quarter Phishing Activity Trends Report, there are 55,282 new phishing websites have been detected in the month of July 2014. To solve the phishing problem, a browser based add-on system may be one of the best solution to aware the user about the website type. In this paper, a novel browser based add-on system is proposed and compared its performance with the existing antiphishing tools. The proposed anti-phishing tool 'ePhish' is compared with the existing browser based antiphishing toolbars. All the anti-phishing tools have been installed in computer systems at an autonomous college to check their performance. The obtained result shows that if the task is divided into a group of systems, it can give better results. For different phishing features, the add-on system tool show around 97 percentage successful results at different case conditions. The current study would be very helpful to countermeasure the phishing attach and the proposed system is able to protect the user by phishing attacks. Since the system tool is capable of handling and managing the phishing website details, so it would be helpful to identify the category of the websites.

show abstract

“…Cybercriminals have also mitigated the efficacy of successful detections by churning through a large set of domains and URLs, with domain flux and URL fluxing [11,26,38,25]. Researchers, in turn, noting that this behavior is generally associated with malicious sites, have used it as a detection feature [20,31]. These fluxing infrastructures are also being detected mining their topology [17], the redirection chains leading to them [24,40,21], and the traffic distributors' system feeding them a stream of users to exploit [22].…”

Section: Related Workmentioning

confidence: 99%

Eyes of a Human, Eyes of a Program: Leveraging Different Views of the Web for Analysis and Detection

Corbetta

Invernizzi

Kruegel

et al. 2014

Research in Attacks, Intrusions and Defenses

View full text Add to dashboard Cite

Abstract. With JavaScript and images at their disposal, web authors can create content that is immediately understandable to a person, but is beyond the direct analysis capability of computer programs, including security tools. Conversely, information can be deceiving for humans even if unable to fool a program. In this paper, we explore the discrepancies between user perception and program perception, using content obfuscation and counterfeit "seal" images as two simple but representative case studies. In a dataset of 149,700 pages we found that benign pages rarely engage in these practices, while uncovering hundreds of malicious pages that would be missed by traditional malware detectors. We envision that this type of heuristics could be a valuable addition to existing detection systems. To show this, we have implemented a proofof-concept detector that, based solely on a similarity score computed on our metrics, can already achieve a high precision (95%) and a good recall (73%).

show abstract

PhishNet: Predictive Blacklisting to Detect Phishing Attacks

Cited by 302 publications

References 3 publications

A Lightweight Anti-Phishing Technique for Mobile Phone

A Lightweight Anti-Phishing Technique for Mobile Phone

Experimental Analysis of Browser based Novel Anti-Phishing System Tool at Educational Level

Eyes of a Human, Eyes of a Program: Leveraging Different Views of the Web for Analysis and Detection

Contact Info

Product

Resources

About