PhiKitA: Phishing Kit Attacks Dataset for Phishing Websites Identification
نویسندگان
چکیده
Recent studies have shown that phishers are using phishing kits to deploy attacks faster, easier and more massive. Detecting in deployed websites might help detect campaigns earlier. To the best of our knowledge, there no datasets providing a set used were attacked by phishing. In this work, we propose PhiKitA, novel dataset contains also generated these kits. We applied MD5 hashes, fingerprints, graph representation DOM algorithms obtain baseline results PhiKitA three experiments: familiarity analysis kit samples, website detection identifying source website. analysis, find evidence different types small campaign. binary classification problem for detection, algorithm achieved an accuracy 92.50%, showing data contain useful information classify Finally, hash obtained 39.54% F1 score, which means does not extract enough distinguish their sources properly.
منابع مشابه
Why phishing still works: User strategies for combating phishing attacks
We have conducted a user study to assess whether improved browser security indicators and increased awareness of phishing have led to users’ improved ability to protect themselves against such attacks. Participants were shown a series of websites and asked to identify the phishing websites. We use eye tracking to obtain objective quantitative data on which visual cues draw users’ attention as t...
متن کاملDistributed Phishing Attacks
We identify and describe a new type of phishing attack that circumvents what is probably today’s most efficient defense mechanism in the war against phishing, namely the shutting down of sites run by the phisher. This attack is carried out using what we call a distributed phishing attack (DPA). The attack works by a per-victim personalization of the location of sites collecting credentials and ...
متن کاملAn interdiscplinary study of phishing and spear-phishing attacks
In a world where spear-phishing is one of the most common attacks used to steal confidential data, it is necessary to instruct technical and non-technical users about new mechanisms attackers can use to generate these attacks. We want to focus on phishing attacks, where a social engineer communicates a deceitful message to their victims in order to obtain some confidential information, because ...
متن کاملA Phishing Model and Its Applications to Evaluating Phishing Attacks
Phishing is a growing threat to Internet users and causes billions of dollars in damage every year. In this paper, we present a theoretical yet practical model to study this threat in a formal manner. While it is folklore knowledge that a successful phishing attack entails creating messages that are indistinguishable from the natural, expected messages by the intended victim, this concept has n...
متن کاملA Review on Phishing Attacks and Various Anti Phishing Techniques
Phishing is a threat that acquire sensitive information such as username, password etc through online. Phishing often takes place in email spoofing or instant messaging .Phishing email contains messages like ask the users to enter the personal information so that it is easy for hackers to hack the information. This paper presents an overview about various phishing attacks and various techniques...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IEEE Access
سال: 2023
ISSN: ['2169-3536']
DOI: https://doi.org/10.1109/access.2023.3268027