Detecting phishing sites using URLs collected from emails

Chuan Sheng Wang, Fu Hau Hsu, Shih Jen Chen, Yan Ling Hwang, Min Hao Wu

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review


Phishing is the malicious behavior of stealing personal information from computer users. It is a very popular account-theft-method among cyber criminals. Hence, developing a new approach to solve phishing attacks becomes an important issue. This paper proposes a router-based solution, called Shark, to phishing attacks. The router-based property allows Shark to protect a whole network without the need to install or maintain any software in any internal host. Based on the URLs collected from emails and the properties of the web pages pointed by these URLs, Shark quickly and automatically identifies phishing web pages. Experimental results demonstrate that Shark installed on a Linux edge router can accurately detect and attack phishing sites with low false positives and false negatives. And even though a false positive occurs, erroneous counterattacks do not influence the normal operations of legal web sites.

Original languageEnglish
Title of host publicationApplied Science and Precision Engineering Innovation
Number of pages7
StatePublished - 2014
EventInternational Applied Science and Precision Engineering Conference 2013, ASPEC 2013 - NanTou, Taiwan
Duration: 18 Oct 201322 Oct 2013

Publication series

NameApplied Mechanics and Materials
ISSN (Print)1660-9336
ISSN (Electronic)1662-7482


ConferenceInternational Applied Science and Precision Engineering Conference 2013, ASPEC 2013


  • Account theft
  • Phishing
  • Phishing email
  • URL


Dive into the research topics of 'Detecting phishing sites using URLs collected from emails'. Together they form a unique fingerprint.

Cite this