Enhanced Detection of Malicious URLs Using Supervised Machine Learning Models
摘要
This paper deliberates on URL phishing, one important subset of cyber threats. Most modern-day deceptive practices have shifted to the digital space due to the vast scope of information available on the internet. URL phishing is a dishonest practice that includes masquerading harmful links as legitimate links to trick users into sharing their private data. Detection of URL phishing is extremely challenging, hence most of these attacks go undetected until it is too late for the victim. Automatic blacklist that rely heavily on user-generated reports to monitor internet links have been repeatedly proven ineffective time and again. Along with failing to identify newly listed phishing sites, these systems also tend to mistake harmless links for phishing traps. This paper proposes the application of classification techniques of practical machine learning, specifically analysing the patterns and behaviours of URLs to detect phishing websites accurately. Leveraging the properties of Decision Trees, Random Forests, Logistic Regression, SVM, and Light GBM, we were able to come up with a detection model, which precisely calculates accuracy, precision, recall, as well as F1 score to evaluate the validity of URL classification.