Detection of Phishing URLs Using Heuristics-Based Approach

2022 5th Information Technology for Education and Development (ITED) Pub Date : 2022-11-01 DOI:10.1109/ITED56637.2022.10051199

S. A. Salihu, I. D. Oladipo, Abdul Afeez Wojuade, M. Abdulraheem, Abdulrauph Babatunde, A. Ajiboye, G. B. Balogun

{"title":"Detection of Phishing URLs Using Heuristics-Based Approach","authors":"S. A. Salihu, I. D. Oladipo, Abdul Afeez Wojuade, M. Abdulraheem, Abdulrauph Babatunde, A. Ajiboye, G. B. Balogun","doi":"10.1109/ITED56637.2022.10051199","DOIUrl":null,"url":null,"abstract":"Phishing is one of the types of cybercrime in which the attacker poses as a trustworthy entity with a view to obtaining sensitive information or data from the victim, this occurs usually through email. In the process, the victim may release information such as login credentials, credit card details, and other personally identifiable information that normally should not be revealed. The existing approaches used for phishing detection, therefore, need to be enhanced to effectively detect phishing. This study proposed a novel method for detecting phishing based on some heuristic features by extracting some relevant attributes, filtering these attributes, and classifying the same according to their impact on a website. The data explored for this study was retrieved from PhishTank and Alexa, which was later preprocessed for smooth model creation in python. The model created was evaluated and consistently gives a true positive rate of 85% based on the threshold set and an accuracy of 95.52%. The resulting output of this study has shown its reliability in the detection of phishing and could serve as a good benchmark for similar studies.","PeriodicalId":246041,"journal":{"name":"2022 5th Information Technology for Education and Development (ITED)","volume":"239 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 5th Information Technology for Education and Development (ITED)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITED56637.2022.10051199","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Phishing is one of the types of cybercrime in which the attacker poses as a trustworthy entity with a view to obtaining sensitive information or data from the victim, this occurs usually through email. In the process, the victim may release information such as login credentials, credit card details, and other personally identifiable information that normally should not be revealed. The existing approaches used for phishing detection, therefore, need to be enhanced to effectively detect phishing. This study proposed a novel method for detecting phishing based on some heuristic features by extracting some relevant attributes, filtering these attributes, and classifying the same according to their impact on a website. The data explored for this study was retrieved from PhishTank and Alexa, which was later preprocessed for smooth model creation in python. The model created was evaluated and consistently gives a true positive rate of 85% based on the threshold set and an accuracy of 95.52%. The resulting output of this study has shown its reliability in the detection of phishing and could serve as a good benchmark for similar studies.

查看原文本刊更多论文

基于启发式方法的网络钓鱼url检测

网络钓鱼是网络犯罪的一种，攻击者冒充一个值得信赖的实体，目的是获取受害者的敏感信息或数据，这通常通过电子邮件发生。在此过程中，受害者可能会泄露诸如登录凭据、信用卡详细信息和其他通常不应泄露的个人身份信息。因此，为了有效地检测网络钓鱼，需要对现有的网络钓鱼检测方法进行改进。本研究提出了一种基于启发式特征的网络钓鱼检测方法，通过提取相关属性，过滤这些属性，并根据其对网站的影响进行分类。本研究探索的数据是从PhishTank和Alexa中检索的，随后在python中进行预处理以顺利创建模型。对所创建的模型进行了评估，并在阈值设置的基础上始终给出85%的真阳性率和95.52%的准确率。本研究的结果显示了其在网络钓鱼检测中的可靠性，可以作为类似研究的良好基准。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 5th Information Technology for Education and Development (ITED)

自引率

0.00%

发文量