SlideShare a Scribd company logo

Phishing Detection Presentation.pptx

Download as PPTX, PDF
K
KavitaThakur72

steal some important information

Education
1 of 23
MINI PROJECT – MSCP34 PHISHING DETECTION USING MACHINE LEARNING GUIDED BY: DR.CHANDRA MOULI P.V.S.S.R. HEAD OF THE DEPARTMENT DEPARTMENT OF COMPUTER SCIENCE PRESENTED BY: KAVITA –P211307 ANKIT KUMAR – P211303 M.Sc. COMPUTER SCIENCE, DEPARTMENT OF COMPUTER SCIENCE DEPARTMENT OF COMPUTER SCIENCE
Presentation Outline DAT ACOLLECTION MODELING & DEPLOYMENT BACKGROUND PRE-PROCESSING CONCLUSIONS Definition, History, Impacts Final Thoughts and Recommendations Dataset Descriptions Feature Engineering and EDA Ten Models Tested, Deployment in Streamlit Application DEPARTMENT OF COMPUTER SCIENCE
BACKGROUND DEPARTMENT OF COMPUTER SCIENCE
What is phishing? Phishing is a form of cybercrime in which a target is contacted via email, telephone, or text message by an attacker disguising as a reputable entity or person. The attacker then lures individuals to counterfeit websites to trick recipients into providing sensitive data. The purpose of this project is to help individuals identify these phishing URLs in order to provide safer practices online. DEPARTMENT OF COMPUTER SCIENCE
Types of Phishing Tactics 96% of phishing attacks arrive by email. 3% of phishing attacks is done over the telephone. This is also known as vishing. 1% of phishing attacks is done via text message. This is also known as smishing. Email Telephone Text Message DEPARTMENT OF COMPUTER SCIENCE
Top Three Types of Data Name,address, email address Treatment information, insurance claims CREDENTIALS PERSONAL DAT A MEDICAL Passwords, usernames, pin numbers, credit card information DEPARTMENT OF COMPUTER SCIENCE
Paypal DEPARTMENT OF COMPUTER SCIENCE
30%of phishing emails are opened by users,and 12%of these targeted users click on the malicious link or attachment. 97%of the users are unable to recognize a sophisticated phishing email. 2021Phishing Statistics DEPARTMENT OF COMPUTER SCIENCE
Common Features of Phishing Emails Sense of Urgency Unusual Sender T oo Good to Be True Hyperlinks DEPARTMENT OF COMPUTER SCIENCE
According to the FBI,phishing incidents nearly doubled in frequency,from 114,702 incidents in 2019, to 241,324 incidents in 2020. The increase in remote workcould be to blame. As the internet becomes a major mode for economic transactions and communications, online trust and cybercrimes have increasingly become an important area of study. DEPARTMENT OF COMPUTER SCIENCE
DATA COLLECTION DEPARTMENT OF COMPUTER SCIENCE
Data was collected from two separate datasets.Phishing URLs were pulled from websites such as PhishT ank and OpenPhish and legitimate URLs were pulled from websites such as Alexa and Common Crawl. The were 545,895 instances in total with a 72.1%baseline. DEPARTMENT OF COMPUTER SCIENCE
PRE-PROCESSING DEPARTMENT OF COMPUTER SCIENCE
Feature Extraction Using a function from urllib library, protocol, domain, path, query, and fragment were extracted from the URL and respective columns were created. The protocol column was dropped as more sophisticated phishing URLs are labeled secure with https:/. DEPARTMENT OF COMPUTER SCIENCE
- = . ? @ ~ & ! + * , # $ % space Feature Extraction Lengthof URL,domain, path, query,and fragment are extracted. Quantity of specific characters in URL, domain, path, query, and fragment are extracted. These characters include: 65 T otal Features Used in Model DEPARTMENT OF COMPUTER SCIENCE
MODEL SELECTION & EVALUATION DEPARTMENT OF COMPUTER SCIENCE
Models Tested - Stochastic Gradient Descent Classifier - Logistic Regression - Support Vector Machine - AdaBoost - Gradient Boost - Decision T ree Classifier - Bagging Classifier - K-Nearest Neighbors Classifier - Extra T rees Classifier - Random Forest Classifier Baseline: 72.1% GridSearchCV and RandomizedSearchCV tools were used to optimize the highest-scoring result. Once the best model was determined, hyperparameter tuning continued to optimize our model. DEPARTMENT OF COMPUTER SCIENCE
Model Selection MODEL TRAINING TESTING USED FOR SCORE SCORE DEPLOYMENT k-Nearest Neighbors 94.8% 93.2% Decision Trees 97.6% 94.3% Extra Trees 97.9% 94.4% Random Forest 97.0% 94.5% DEPARTMENT OF COMPUTER SCIENCE
Accuracy 94.5% Recall 85.8% Specificity 97.7% Precision 93.6% Model Evaluation DEPARTMENT OF COMPUTER SCIENCE
CONCLUSIONS DEPARTMENT OF COMPUTER SCIENCE
How to Avoid Phishing Attacks ST AY INFORMED Learn about new phishing techniques that are being developed to avoid falling prey to one. UTILIZE ‘FISHING FOR PHISHERS’ When in doubt, use the ‘Fishing for Phishers’ app to verify the authenticity of a website. THINK BEFORE YOU CLICK Never click on hyperlinks without examining the hidden URL. 1 2 3 DEPARTMENT OF COMPUTER SCIENCE
Thank you! Any questions? DEPARTMENT OF COMPUTER SCIENCE
References “Phishing Statistics (Updated 2021): 50+ Important Phishing Stats.” Tessian,17 May 2021, www.tessian.com/blog/phishing-st atistics-2020/. KnowBe4. “What Is Phishing?”Phishing, www.phishing.org/what-is- phishing. “2021 DBIRMaster's Guide. ” Verizon Business, www.verizon.com/business/res ources/reports/dbir/2021/mast ers-guide/. Slide T emplate: slidesgo.com “History of Phishing.” Cofense,28 May 2021, cofense.com/knowledge-ce nter/history-of-phishing/. “The 2021 Ponemon Cost of PHISHINGStudy:Proofpoint US. ” Proofpoint,19 Aug.2021, www.proofpoint.com/us/resources/a nalyst-reports/ponemon-cost-of-phi shing-study.

Recommended

Social engineering-Attack of the Human Behavior
Social engineering-Attack of the Human BehaviorSocial engineering-Attack of the Human Behavior
Social engineering-Attack of the Human Behavior
James Krusic
 
Different Types of Phishing Attacks
Different Types of Phishing AttacksDifferent Types of Phishing Attacks
Different Types of Phishing Attacks
SysCloud
 
Social Engineering | #ARMSec2015
Social Engineering | #ARMSec2015Social Engineering | #ARMSec2015
Social Engineering | #ARMSec2015
Hovhannes Aghajanyan
 
PHISHING DETECTION
PHISHING DETECTIONPHISHING DETECTION
PHISHING DETECTION
umme ayesha
 
Phishing Attacks
Phishing AttacksPhishing Attacks
Phishing Attacks
Jagan Mohan
 
Social engineering
Social engineeringSocial engineering
Social engineering
ankushmohanty
 
Detecting Phishing using Machine Learning
Detecting Phishing using Machine LearningDetecting Phishing using Machine Learning
Detecting Phishing using Machine Learning
ijtsrd
 
Social Engineering - Human aspects of industrial and economic espionage
Social Engineering - Human aspects of industrial and economic espionageSocial Engineering - Human aspects of industrial and economic espionage
Social Engineering - Human aspects of industrial and economic espionage
Marin Ivezic
 

Recommended

Social engineering-Attack of the Human Behavior
Social engineering-Attack of the Human BehaviorSocial engineering-Attack of the Human Behavior
Social engineering-Attack of the Human Behavior
James Krusic
 
Different Types of Phishing Attacks
Different Types of Phishing AttacksDifferent Types of Phishing Attacks
Different Types of Phishing Attacks
SysCloud
 
Social Engineering | #ARMSec2015
Social Engineering | #ARMSec2015Social Engineering | #ARMSec2015
Social Engineering | #ARMSec2015
Hovhannes Aghajanyan
 
PHISHING DETECTION
PHISHING DETECTIONPHISHING DETECTION
PHISHING DETECTION
umme ayesha
 
Phishing Attacks
Phishing AttacksPhishing Attacks
Phishing Attacks
Jagan Mohan
 
Social engineering
Social engineeringSocial engineering
Social engineering
ankushmohanty
 
Detecting Phishing using Machine Learning
Detecting Phishing using Machine LearningDetecting Phishing using Machine Learning
Detecting Phishing using Machine Learning
ijtsrd
 
Social Engineering - Human aspects of industrial and economic espionage
Social Engineering - Human aspects of industrial and economic espionageSocial Engineering - Human aspects of industrial and economic espionage
Social Engineering - Human aspects of industrial and economic espionage
Marin Ivezic
 
Social engineering hacking attack
Social engineering hacking attackSocial engineering hacking attack
Social engineering hacking attack
Pankaj Dubey
 
Phishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingPhishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS Working
Sachin Saini
 
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScanHow to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
ControlScan, Inc.
 
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdfPhishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
VaralakshmiKC
 
Email phishing and countermeasures
Email phishing and countermeasuresEmail phishing and countermeasures
Email phishing and countermeasures
Jorge Sebastiao
 
Ransomware Resiliency, Recoverability and Availability
Ransomware Resiliency, Recoverability and AvailabilityRansomware Resiliency, Recoverability and Availability
Ransomware Resiliency, Recoverability and Availability
Lai Yoong Seng
 
Social Engineering Basics
Social Engineering BasicsSocial Engineering Basics
Social Engineering Basics
Luke Rusten
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Stephen Cobb
 
Social Engineering new.pptx
Social Engineering new.pptxSocial Engineering new.pptx
Social Engineering new.pptx
Santhosh Prabhu
 
Phishing Attack : A big Threat
Phishing Attack : A big ThreatPhishing Attack : A big Threat
Phishing Attack : A big Threat
sourav newatia
 
Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hack
Dharmesh Makwana
 
Phishing Attacks: A Challenge Ahead
Phishing Attacks: A Challenge AheadPhishing Attacks: A Challenge Ahead
Phishing Attacks: A Challenge Ahead
eLearning Papers
 
Phishing Scams: 8 Helpful Tips to Keep You Safe
Phishing Scams: 8 Helpful Tips to Keep You SafePhishing Scams: 8 Helpful Tips to Keep You Safe
Phishing Scams: 8 Helpful Tips to Keep You Safe
CheapSSLsecurity
 
Phishing attack
Phishing attackPhishing attack
Phishing attack
Raghav Chhabra
 
Phishing
PhishingPhishing
Phishing
shivli0769
 
social engineering
social engineering social engineering
social engineering
Ravi Patel
 
Phishing
PhishingPhishing
Phishing
SouganthikaSankaresw
 
Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)
delictes
 
What is Phishing and How can you Avoid it?
What is Phishing and How can you Avoid it?What is Phishing and How can you Avoid it?
What is Phishing and How can you Avoid it?
Quick Heal Technologies Ltd.
 
Introduction to Social engineering | Techniques of Social engineering
Introduction to Social engineering | Techniques of Social engineeringIntroduction to Social engineering | Techniques of Social engineering
Introduction to Social engineering | Techniques of Social engineering
Prem Lamsal
 
Phishing Detection .pptx
Phishing Detection .pptxPhishing Detection .pptx
Phishing Detection .pptx
KavitaThakur72
 
Mobile Computing IEEE 2014 Projects
Mobile Computing IEEE 2014 ProjectsMobile Computing IEEE 2014 Projects
Mobile Computing IEEE 2014 Projects
Vijay Karan
 

More Related Content

What's hot

Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hack
Dharmesh Makwana
 
Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)
delictes
 

What's hot (20)

Social engineering hacking attack
Social engineering hacking attackSocial engineering hacking attack
Social engineering hacking attack
 
Phishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS WorkingPhishing attack, with SSL Encryption and HTTPS Working
Phishing attack, with SSL Encryption and HTTPS Working
 
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScanHow to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
How to Spot and Combat a Phishing Attack - Cyber Security Webinar | ControlScan
 
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdfPhishing Website Detection by Machine Learning Techniques Presentation.pdf
Phishing Website Detection by Machine Learning Techniques Presentation.pdf
 
Email phishing and countermeasures
Email phishing and countermeasuresEmail phishing and countermeasures
Email phishing and countermeasures
 
Ransomware Resiliency, Recoverability and Availability
Ransomware Resiliency, Recoverability and AvailabilityRansomware Resiliency, Recoverability and Availability
Ransomware Resiliency, Recoverability and Availability
 
Social Engineering Basics
Social Engineering BasicsSocial Engineering Basics
Social Engineering Basics
 
Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...Cyber Security 101: Training, awareness, strategies for small to medium sized...
Cyber Security 101: Training, awareness, strategies for small to medium sized...
 
Social Engineering new.pptx
Social Engineering new.pptxSocial Engineering new.pptx
Social Engineering new.pptx
 
Phishing Attack : A big Threat
Phishing Attack : A big ThreatPhishing Attack : A big Threat
Phishing Attack : A big Threat
 
Ethical hacking a licence to hack
Ethical hacking a licence to hackEthical hacking a licence to hack
Ethical hacking a licence to hack
 
Phishing Attacks: A Challenge Ahead
Phishing Attacks: A Challenge AheadPhishing Attacks: A Challenge Ahead
Phishing Attacks: A Challenge Ahead
 
Phishing Scams: 8 Helpful Tips to Keep You Safe
Phishing Scams: 8 Helpful Tips to Keep You SafePhishing Scams: 8 Helpful Tips to Keep You Safe
Phishing Scams: 8 Helpful Tips to Keep You Safe
 
Phishing attack
Phishing attackPhishing attack
Phishing attack
 
Phishing
PhishingPhishing
Phishing
 
social engineering
social engineering social engineering
social engineering
 
Phishing
PhishingPhishing
Phishing
 
Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)Power point phishing (Modificación 21/05)
Power point phishing (Modificación 21/05)
 
What is Phishing and How can you Avoid it?
What is Phishing and How can you Avoid it?What is Phishing and How can you Avoid it?
What is Phishing and How can you Avoid it?
 
Introduction to Social engineering | Techniques of Social engineering
Introduction to Social engineering | Techniques of Social engineeringIntroduction to Social engineering | Techniques of Social engineering
Introduction to Social engineering | Techniques of Social engineering
 

Similar to Phishing Detection Presentation.pptx

Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04
David Phillips
 
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTINGNETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
Nishanth Gandhidoss
 
CCD_2013_Preguntas_REVIEW
CCD_2013_Preguntas_REVIEWCCD_2013_Preguntas_REVIEW
CCD_2013_Preguntas_REVIEW
Gregory Anders
 

Similar to Phishing Detection Presentation.pptx (20)

Phishing Detection .pptx
Phishing Detection .pptxPhishing Detection .pptx
Phishing Detection .pptx
 
Mobile Computing IEEE 2014 Projects
Mobile Computing IEEE 2014 ProjectsMobile Computing IEEE 2014 Projects
Mobile Computing IEEE 2014 Projects
 
Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04
 
Mobile computing-ieee-2014-projects
Mobile computing-ieee-2014-projectsMobile computing-ieee-2014-projects
Mobile computing-ieee-2014-projects
 
Splunk App for Stream - Einblicke in Ihren Netzwerkverkehr
Splunk App for Stream - Einblicke in Ihren NetzwerkverkehrSplunk App for Stream - Einblicke in Ihren Netzwerkverkehr
Splunk App for Stream - Einblicke in Ihren Netzwerkverkehr
 
Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04Show and tell program 04 2014-09-04
Show and tell program 04 2014-09-04
 
Splunk App for Stream for Enhanced Operational Intelligence from Wire Data
Splunk App for Stream for Enhanced Operational Intelligence from Wire DataSplunk App for Stream for Enhanced Operational Intelligence from Wire Data
Splunk App for Stream for Enhanced Operational Intelligence from Wire Data
 
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTINGNETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
NETWORK INTRUSION DETECTION AND NODE RECOVERY USING DYNAMIC PATH ROUTING
 
Detection of Phishing Websites using machine Learning Algorithm
Detection of Phishing Websites using machine Learning AlgorithmDetection of Phishing Websites using machine Learning Algorithm
Detection of Phishing Websites using machine Learning Algorithm
 
CCD_2013_Preguntas_REVIEW
CCD_2013_Preguntas_REVIEWCCD_2013_Preguntas_REVIEW
CCD_2013_Preguntas_REVIEW
 
Offensive cyber security engineer pragram course agenda
Offensive cyber security engineer pragram course agendaOffensive cyber security engineer pragram course agenda
Offensive cyber security engineer pragram course agenda
 
Offensive cyber security engineer
Offensive cyber security engineerOffensive cyber security engineer
Offensive cyber security engineer
 
Offensive cyber security engineer updated
Offensive cyber security engineer updatedOffensive cyber security engineer updated
Offensive cyber security engineer updated
 
INTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptx
INTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptxINTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptx
INTERNSHIPREVIEW-ISHAQ (1) [Recovered].pptx
 
Some Observations on Common Patterns in Information Technology
Some Observations on Common Patterns in Information TechnologySome Observations on Common Patterns in Information Technology
Some Observations on Common Patterns in Information Technology
 
APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...
APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...
APIsecure 2023 - Approaching Multicloud API Security USing Metacloud, David L...
 
Modern Security Operations & Common Roles/Competencies
Modern Security Operations & Common Roles/Competencies Modern Security Operations & Common Roles/Competencies
Modern Security Operations & Common Roles/Competencies
 
Preprint-IC3I2022 - 14-16 Dec 2022.pdf
Preprint-IC3I2022 - 14-16 Dec 2022.pdfPreprint-IC3I2022 - 14-16 Dec 2022.pdf
Preprint-IC3I2022 - 14-16 Dec 2022.pdf
 
International Journal of Network Security & Its Applications (IJNSA)
International Journal of Network Security & Its Applications (IJNSA)International Journal of Network Security & Its Applications (IJNSA)
International Journal of Network Security & Its Applications (IJNSA)
 
Splunk App for Stream
Splunk App for StreamSplunk App for Stream
Splunk App for Stream
 

Recently uploaded

Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
KarakKing
 

Recently uploaded (20)

Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdfUnit 3 Emotional Intelligence and Spiritual Intelligence.pdf
Unit 3 Emotional Intelligence and Spiritual Intelligence.pdf
 
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
Kodo Millet PPT made by Ghanshyam bairwa college of Agriculture kumher bhara...
 
ICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptx
 
SOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning PresentationSOC 101 Demonstration of Learning Presentation
SOC 101 Demonstration of Learning Presentation
 
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptxExploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
Exploring_the_Narrative_Style_of_Amitav_Ghoshs_Gun_Island.pptx
 
Understanding Accommodations and Modifications
Understanding Accommodations and ModificationsUnderstanding Accommodations and Modifications
Understanding Accommodations and Modifications
 
Graduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - EnglishGraduate Outcomes Presentation Slides - English
Graduate Outcomes Presentation Slides - English
 
How to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POSHow to Manage Global Discount in Odoo 17 POS
How to Manage Global Discount in Odoo 17 POS
 
21st_Century_Skills_Framework_Final_Presentation_2.pptx
21st_Century_Skills_Framework_Final_Presentation_2.pptx21st_Century_Skills_Framework_Final_Presentation_2.pptx
21st_Century_Skills_Framework_Final_Presentation_2.pptx
 
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptxOn_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
On_Translating_a_Tamil_Poem_by_A_K_Ramanujan.pptx
 
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
Beyond_Borders_Understanding_Anime_and_Manga_Fandom_A_Comprehensive_Audience_...
 
Salient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functionsSalient Features of India constitution especially power and functions
Salient Features of India constitution especially power and functions
 
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptxHMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
 
How to Add New Custom Addons Path in Odoo 17
How to Add New Custom Addons Path in Odoo 17How to Add New Custom Addons Path in Odoo 17
How to Add New Custom Addons Path in Odoo 17
 
General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...General Principles of Intellectual Property: Concepts of Intellectual Proper...
General Principles of Intellectual Property: Concepts of Intellectual Proper...
 
OSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & SystemsOSCM Unit 2_Operations Processes & Systems
OSCM Unit 2_Operations Processes & Systems
 
Tatlong Kwento ni Lola basyang-1.pdf arts
Tatlong Kwento ni Lola basyang-1.pdf artsTatlong Kwento ni Lola basyang-1.pdf arts
Tatlong Kwento ni Lola basyang-1.pdf arts
 
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptxCOMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
 
On National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan FellowsOn National Teacher Day, meet the 2024-25 Kenan Fellows
On National Teacher Day, meet the 2024-25 Kenan Fellows
 

Phishing Detection Presentation.pptx

  • 1. MINI PROJECT – MSCP34 PHISHING DETECTION USING MACHINE LEARNING GUIDED BY: DR.CHANDRA MOULI P.V.S.S.R. HEAD OF THE DEPARTMENT DEPARTMENT OF COMPUTER SCIENCE PRESENTED BY: KAVITA –P211307 ANKIT KUMAR – P211303 M.Sc. COMPUTER SCIENCE, DEPARTMENT OF COMPUTER SCIENCE DEPARTMENT OF COMPUTER SCIENCE
  • 2. Presentation Outline DAT ACOLLECTION MODELING & DEPLOYMENT BACKGROUND PRE-PROCESSING CONCLUSIONS Definition, History, Impacts Final Thoughts and Recommendations Dataset Descriptions Feature Engineering and EDA Ten Models Tested, Deployment in Streamlit Application DEPARTMENT OF COMPUTER SCIENCE
  • 4. What is phishing? Phishing is a form of cybercrime in which a target is contacted via email, telephone, or text message by an attacker disguising as a reputable entity or person. The attacker then lures individuals to counterfeit websites to trick recipients into providing sensitive data. The purpose of this project is to help individuals identify these phishing URLs in order to provide safer practices online. DEPARTMENT OF COMPUTER SCIENCE
  • 5. Types of Phishing Tactics 96% of phishing attacks arrive by email. 3% of phishing attacks is done over the telephone. This is also known as vishing. 1% of phishing attacks is done via text message. This is also known as smishing. Email Telephone Text Message DEPARTMENT OF COMPUTER SCIENCE
  • 6. Top Three Types of Data Name,address, email address Treatment information, insurance claims CREDENTIALS PERSONAL DAT A MEDICAL Passwords, usernames, pin numbers, credit card information DEPARTMENT OF COMPUTER SCIENCE
  • 8. 30%of phishing emails are opened by users,and 12%of these targeted users click on the malicious link or attachment. 97%of the users are unable to recognize a sophisticated phishing email. 2021Phishing Statistics DEPARTMENT OF COMPUTER SCIENCE
  • 9. Common Features of Phishing Emails Sense of Urgency Unusual Sender T oo Good to Be True Hyperlinks DEPARTMENT OF COMPUTER SCIENCE
  • 10. According to the FBI,phishing incidents nearly doubled in frequency,from 114,702 incidents in 2019, to 241,324 incidents in 2020. The increase in remote workcould be to blame. As the internet becomes a major mode for economic transactions and communications, online trust and cybercrimes have increasingly become an important area of study. DEPARTMENT OF COMPUTER SCIENCE
  • 12. Data was collected from two separate datasets.Phishing URLs were pulled from websites such as PhishT ank and OpenPhish and legitimate URLs were pulled from websites such as Alexa and Common Crawl. The were 545,895 instances in total with a 72.1%baseline. DEPARTMENT OF COMPUTER SCIENCE
  • 14. Feature Extraction Using a function from urllib library, protocol, domain, path, query, and fragment were extracted from the URL and respective columns were created. The protocol column was dropped as more sophisticated phishing URLs are labeled secure with https:/. DEPARTMENT OF COMPUTER SCIENCE
  • 15. - = . ? @ ~ & ! + * , # $ % space Feature Extraction Lengthof URL,domain, path, query,and fragment are extracted. Quantity of specific characters in URL, domain, path, query, and fragment are extracted. These characters include: 65 T otal Features Used in Model DEPARTMENT OF COMPUTER SCIENCE
  • 17. Models Tested - Stochastic Gradient Descent Classifier - Logistic Regression - Support Vector Machine - AdaBoost - Gradient Boost - Decision T ree Classifier - Bagging Classifier - K-Nearest Neighbors Classifier - Extra T rees Classifier - Random Forest Classifier Baseline: 72.1% GridSearchCV and RandomizedSearchCV tools were used to optimize the highest-scoring result. Once the best model was determined, hyperparameter tuning continued to optimize our model. DEPARTMENT OF COMPUTER SCIENCE
  • 18. Model Selection MODEL TRAINING TESTING USED FOR SCORE SCORE DEPLOYMENT k-Nearest Neighbors 94.8% 93.2% Decision Trees 97.6% 94.3% Extra Trees 97.9% 94.4% Random Forest 97.0% 94.5% DEPARTMENT OF COMPUTER SCIENCE
  • 19. Accuracy 94.5% Recall 85.8% Specificity 97.7% Precision 93.6% Model Evaluation DEPARTMENT OF COMPUTER SCIENCE
  • 21. How to Avoid Phishing Attacks ST AY INFORMED Learn about new phishing techniques that are being developed to avoid falling prey to one. UTILIZE ‘FISHING FOR PHISHERS’ When in doubt, use the ‘Fishing for Phishers’ app to verify the authenticity of a website. THINK BEFORE YOU CLICK Never click on hyperlinks without examining the hidden URL. 1 2 3 DEPARTMENT OF COMPUTER SCIENCE
  • 23. References “Phishing Statistics (Updated 2021): 50+ Important Phishing Stats.” Tessian,17 May 2021, www.tessian.com/blog/phishing-st atistics-2020/. KnowBe4. “What Is Phishing?”Phishing, www.phishing.org/what-is- phishing. “2021 DBIRMaster's Guide. ” Verizon Business, www.verizon.com/business/res ources/reports/dbir/2021/mast ers-guide/. Slide T emplate: slidesgo.com “History of Phishing.” Cofense,28 May 2021, cofense.com/knowledge-ce nter/history-of-phishing/. “The 2021 Ponemon Cost of PHISHINGStudy:Proofpoint US. ” Proofpoint,19 Aug.2021, www.proofpoint.com/us/resources/a nalyst-reports/ponemon-cost-of-phi shing-study.