 |
Here is our research objective.
Phishers frequently change domain names and IP addresses of websites to avoid detection.
However, the traditional block list methods remain insufficient with regard to dealing with rapidly changing domain names and IP addresses of phishing websites.
In addition, phishing websites often employ certificates and HTTPS encryption to appear more trustworthy.
Therefore, in this study, we constructed and analyzed DNS graphs of domain names and IP addresses of HTTPS-enabled phishing websites to be useful for phishing website detection.
|
IEEE/ICACT20230129 Slide.05
[Big Slide]
[YouTube]