TypoWriter: A Tool to Prevent Typosquatting

Ahmad, Ishtiyaque; Anwar, Md. Parvez; Iqbal, Anindya

doi:10.1109/compsac.2019.00068

Cited by 7 publications

(6 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Additionally, if that site is hosting malware, the unsuspecting user could be open to compromise via a drive-by-download. This is known as typosquatting Ahmad et al (2019).…”

Section: Risks and Limitations Of The Domain Name Systemmentioning

confidence: 99%

Monitoring Malicious DNS Queries: An Experimental Case Study of Utilising the National Cyber Security Centre’s Protective DNS within a UK Public Sector Organisation

Carr

Alam

Allison

2023

Preprint

View full text Add to dashboard Cite

The Domain Name System (DNS) is a key part of the modern inter-net but is also a route that malicious actors can use as cyber security attack. This paper reviews security and privacy additions to DNS, specifically Protective DNS (PDNS). We present a case study of the UK’s National Cyber Security Centre’s PDNS and its implementation in one regional public sector organisation in the north of England. We show how PDNS compliments DNS features to improve the security and privacy for eligible organisations. We also review how DNS queries have been blocked due to security risks. This block data can be integrated to a security information and event management system for further analysis and automation. The main contribution of this case study is that the NCSC’s PDNS Service is useful as part of a defense in depth strategy by allowing greater visibility of DNS queries and blocking of malicious content at the point of name resolution. This paper also recommends some techniques to improve the service which require further evaluation.

show abstract

“…Additionally, if that site is hosting malware, the unsuspecting user could be open to compromise via a drive-by-download. This is known as typosquatting Ahmad et al (2019).…”

Section: Risks and Limitations Of The Domain Name Systemmentioning

confidence: 99%

Monitoring Malicious DNS Queries: An Experimental Case Study of Utilising the National Cyber Security Centre’s Protective DNS within a UK Public Sector Organisation

Carr

Alam

Allison

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…• TypoSquatting Tools 24 : presents a performance analysis of most popular market tools for typosquatting. These tools use fuzzing techniques to generate an exhaustive list of malicious domain names, and then check if these domain names are in use or not.…”

Section: Available Toolsmentioning

confidence: 99%

“…• TypoWritter: The Paper TypoWriter: A Tool to Prevent Typosquatting, 24 presents a tool for defensive preventive registration of domain names using recural neural network (RNN). They analyzed the domain logs for .bg TLD.…”

Section: Available Toolsmentioning

confidence: 99%

Overview of phishing landscape and homographs in Arabic domain names

Ahmad

Erdődi

2021

Security and Privacy

View full text Add to dashboard Cite

In this paper, we summarize the latest social engineering phishing attack types with the focus on domain name manipulation. Providing a fake domain is a crucial part of phishing attacks that can be carried out with different techniques such as cybersquatting, typosquattings, or homographs. We argue that homographs with special International Domain Names can be very serious threat for many users that can hardly be identified. We present the analysis of phishing attacks with Arabic domains and conclude that because of the linguistic complexity of the Arabic language and the missing support by the industrial tools expose millions of users to sophisticated domain manipulation based phishing attacks. To reduce the future risk of homograph attacks originating from Arabic internationalized domain names (IDNs) we suggest a change to the registration policy. We also present a browser extension to assist against homographs in current Arabic IDN namespace.

show abstract

“…At the moment clicking ethics URL, users often make mistakes (typos) that are unable to visit the desired website. The situation is made worse when the wrong URL leads to another website that the user does not want to visit [2], [3]. This condition is called Typosquatting.…”

Section: Introductionmentioning

confidence: 99%

“…Thus, the risk of a typo is causing a phishing attack. Sometimes the fake website created with the aim to steal users' personal information, such as credit cards, PIN, passwords, and other personal information of the users [2].…”

Section: Introductionmentioning

confidence: 99%

Typosquatting Potential on the Official Website (An Empirical Study of Popular Webites in Indonesia)

Sasongko¹,

Suprapto²,

Hendradi³

2021

Proceedings of the 2nd Borobudur International Symposium on Science and Technology (BIS-STE 2020)

View full text Add to dashboard Cite

At the time of typing the website address (URL), the users often make mistakes (typos) that are unable to visit the desired website. The situation becomes worse when the wrong URL pointing to other websites that do not wish to be visited by the user and may be made available for the aim of cyber-crime. This condition is called Typosquatting. Typosquatting is often used to carry out dangerous cyber-attacks. Research conducted will focus on the potential Typosquatting popular website domain in Indonesia based on Similar web and Alexa rankings. The purpose of this research is to determine the potential for Typosquatting attacks on the popular website domain. Potential observation for Typosquatting was carried out using the Domain Security Test owned by Immuniweb. The result obtained from observation is the number of active domains contained in Typosquatting potential domain has a percentage of 90 % and 26 % potential domain of Typosquatting visited by the users. The most identified Typosquatting model is substitution and addition, meanwhile the most widely used of the website purpose is Hit Stealing and Parking Domain / For Sale. The letters on the left and right of the type target letter have the potential to be more often cause typo if it is compared to the letters which are above and below the type target letter.

show abstract

TypoWriter: A Tool to Prevent Typosquatting

Cited by 7 publications

References 13 publications

Monitoring Malicious DNS Queries: An Experimental Case Study of Utilising the National Cyber Security Centre’s Protective DNS within a UK Public Sector Organisation

Monitoring Malicious DNS Queries: An Experimental Case Study of Utilising the National Cyber Security Centre’s Protective DNS within a UK Public Sector Organisation

Overview of phishing landscape and homographs in Arabic domain names

Typosquatting Potential on the Official Website (An Empirical Study of Popular Webites in Indonesia)

Contact Info

Product

Resources

About