PhishMonger: A free and open source public archive of real-world phishing websites | IEEE Conference Publication | IEEE Xplore

PhishMonger: A free and open source public archive of real-world phishing websites


Abstract:

The number of active, online phishing websites continues to grow unabated in recent years. This has created an ever-increasing security risk for both individual and enter...Show More

Abstract:

The number of active, online phishing websites continues to grow unabated in recent years. This has created an ever-increasing security risk for both individual and enterprise users in terms of identity theft, malware, financial loss, etc. Although resources exist for tracking, cataloguing, and blacklisting these types of sites (e.g., PhishTank.com), the ephemeral nature of phishing websites makes in-depth analysis exceptionally difficult. In order to better understand how these phishing sites exploit user and system weaknesses, we have crafted a platform named PhishMonger for capturing live phishing websites in real-time on an ever-present, rolling basis, which we outline in this paper. Moreover, we present details regarding our growing database of verified phishing websites, which currently encompasses over 88,754 sites, spanning 10,956,415 files and folders, utilizing 108GB of compressed storage. We offer recommendations on how this corpus can be leveraged by the cybersecurity and security informatics research communities to examine several important research problems.
Date of Conference: 28-30 September 2016
Date Added to IEEE Xplore: 17 November 2016
ISBN Information:
Conference Location: Tucson, AZ, USA

Contact IEEE to Subscribe

References

References is not available for this document.