Identifying vulnerable websites by analysis of common strings in phishing URLs

2009 eCrime Researchers Summit, eCRIME '09

Volumn , Issue , 2009, Pages

  Wardman, Brad ^a   Shukla, Gaurang ^a   Warner, Gary ^a  

^a UNIVERSITY OF ALABAMA AT BIRMINGHAM   (United States)

Author keywords

Exploits; Phishing; Remote file inclusion; Vulnerabilities

Indexed keywords

ATTACK METHODS; CASE STUDY APPROACH; INTRUSION DETECTION SYSTEMS; LONGEST COMMON SUBSTRING; PHISHING; REMOTE FILES; WEB SERVERS; WEBMASTERS;

COMPUTER CRIME; INTERNET; RESEARCH; SERVERS; WEBSITES;

INTRUSION DETECTION;

EID: 72449205441     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ECRIME.2009.5342610     Document Type: Conference Paper

References (29)

1. Aaron, G., & Rasmussen, R. (2008). Global Phishing Survey: Trends and Domain Name Use 2H2008. Lexington, MA: APWG.
2. Abu-Nimeh, S., Nappa, D., Wang, X., & Nair, S. (2007). A Comparison of Machine Learning Techniques for Phishing Detection. APWG eCrimes Researchers Summit, (pp. 60-69). Pittsburgh, PA.
3. Athos-Staker. (2009). XOOPS 2.3.2 (mydirname) Remote PHP Code Execution Exploit. Retrieved from http://www.milw0rm.com/exploits/7705
4. Chandrasekaran, M., Karayanan, K., & Upadhyaya, S. (2006). Phishing E-mail Detection Based on Structural properties. In New York State Cyber Security Conference, (pp. 2-8). Albany, NY.
5. Commission, F. T. (2008). Deter. Detect. Defend. Avoid ID Theft. Retrieved from Fighting Back Against Identity Theft: http://www.ftc.gov/bcp/edu/ microsites/idtheft/index.html
6. Commission, F. T. (2008). Phishing - OnGuard Online. Retrieved from OnGuard Online: www.onguardonline.gov/topics/phishing.aspx
7. Concha, A. (2007). WordPress 2.2 Arbitrary File Upload Exploit. Retrieved from http://www.milw0rm.org/exploits/4113
8. Corporation, I. T. Regions Identity Theft Kit. Retrieved 2009, from Regions: www.regions.com/virtualDocuments/Identity-Theft-Kit.pdf
9. Drucker, H., Wu, D., & Vapnik, V. N. (1999). Support vector machines for spam categorization. IEEE Transactions on Neural Networks (pp. 1048-1054). IEEE.
10. eBay. Spoof Email Tutorial. Retrieved 2009, from eBay: pages.ebay.com/education/spooftutorial/
11. Fette, I., Sadeh, N., & Tomasic, A. (2007). Learning to Detect Phishing Emails. WWW '07: Proceedings of the 16th international conference on World Wide Web (pp. 649-656). New York, NY: ACM Press.
12. Garera, S., Provos, N., Chew, M., & Rubin, A. (2007). A Framework for Detection and Measurement of Phishing Attacks. In WORM '07: 07: Proceedings of the 2007 ACM Workshop on Recurring Malcode (pp. 1-8). Alexandria, Vinginia: ACM Press.
13. Google. Google Safe Browsing for Firefox. Retrieved 2009, from http://www.google.com/tools/firefox/safebrowsing/
14. Graham, P. (2003). Better Bayesian Filtering. Proceedings of the 2003 MIT Spam Conference.
15. Gusfield, D. Algorithms on Strings, Trees and Sequences. Cambridge University Press, 1997.
16. He, Y. LCS - yiminghe - JavaEye. Retrieved 2009, from http://yiminghe.javaeye.com/blog/257678
17. Jagatic, T. N., Johnson, N. A., Jakobsson, M., & Menczer, F. (2007). Social Phishing. Communications of the ACM, 50(10) 94-100.
18. Mahmood-Ali. (2007). Vistered Littlel.6a (skin) Remote File Disclosure Vulnerability. Retrieved from http://www.milw0rm.com/exploits/3999
19. Microsoft. Anti-Phishing Home. Retrieved 2009, from http://www.microsoft. com/mscorp/safety/technologies/antiphishing/default.mspx
20. Roesch, M. (1999). Snort - Lightweight Intrusion Detection for Networks. Proceedings of the 13th USENIX conference on System administration. Seattle, WA: 1999.
21. Sahami, M., Dumais, S., Heckerman, D., & Horvitz, E. (1998). A Bayesian Approach to Filtering Junk E-Mail. In Proceedings of the AAAI'98 Workshop on Learning for Text Categorization, (pp. 52-55). Madison, Wisconsin.
22. Sanpakdee, U., Walairacht, A., & Walairacht, S. (2006). Adaptive Spam Mail Filtering Using Genetic Algorithm. 8th International Conference on Advanced Communication Technology (pp. 441-445). IEEE.
23. Symantec. Antiphishing Protection. Retrieved 2009, from http://www.symantec.com/norton/security-response/phishing.jsp
24. Vind, J. [waraxe-2009-SA#071] - Multiple Vulnerabilities in VirtueMart 1.1.2. Retrieved 2009, from http://www.waraxe.us/advisory-71.html
25. Vind, J. VirtueMart <= 1.1.2 Multiple Remote Vulnerabilities. Retrieved 2009, from http://www.milw0rm.com/exploits/8327
26. Wardman, B., & Warner, G. (2008). Automating phishing website identification through deep MD5 matching. APWG eCrimes Researchers Summit. Atlanta, Georgia: IEEE.
27. Wenyin, L., Huang, G., Xiaoyue, L., Deng, X., & Min, Z. (2005). Phishing Website Detection. In ICDAR '05: Proceedings of the 2005 Eighth International Conference on Document Analysis and Recognition (pp. 560-564). IEEE.
28. Z3ro, C. (2007). Joomla Component Expose <=RC35 Remote File Upload Vulnerability. Retrieved from http://www.milw0rm.com/exploits/4194
29. Zhang, Y., Hong, J., & Cranor, L. (2007). CANTINA: A Content-Based Approach to Detecting Phishing Web Sites. WWW '07: The 16th International Conference on World Wide Web (pp. 639-648). Banff, Alberta, Canada: ACM Press.