Phishing Website Detection With Semantic Features Based on Machine Learning Classifiers
Ammar Almomani, Mohammad Alauthman, Mohd Shatnawi, Mohammed Alweshah, Ayat Alrosan, Waleed Alomoush, Brij Gupta, Brij Gupta
OAI: oai:igi-global.com:297032 • DOI: 10.4018/IJSWIS.297032
Published by: IGI Global
Abstract
The phishing attack is one of the main cybersecurity threats in web phishing and spear phishing. Phishing websites continue to be a problem. One of the main contributions to our study was working and extracting the URL & Domain Identity feature, Abnormal Features, HTML and JavaScript Features, and Domain Features as semantic features to detect phishing websites, which makes the process of classification using those semantic features, more controllable and more effective. The current study used machine learning model algorithms to detect phishing websites, and comparisons were made. We have used 16 machine learning models adopted with 10 semantic features that represent the most effective features for the detection of phishing webpages extracted from two datasets. The GradientBoostingClassifier and RandomForestClassifier had the best accuracy based on the comparison results (i.e., about 97%). In contrast, GaussianNB and the stochastic gradient descent (SGD) classifier represent the lowest accuracy results; 84% and 81% respectively, in comparison with other classifiers.