Scribd
Upload
68 views3 pages

Rule 1: If: Theurl 7 Phishing

The document outlines 15 rules for determining whether a URL is phishing, suspicious, or legitimate. The rules examine characteristics of the URL such as length, use of symbols, inclusion of certain characters, HTTPS encryption, age of domain registration, PageRank, and presence of DNS records. If a URL meets the criteria in a rule, it is classified as either phishing, suspicious, or legitimate.

Uploaded by

Muhammad Ahtisham Asif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
68 views3 pages

Rule 1: If: Theurl 7 Phishing

The document outlines 15 rules for determining whether a URL is phishing, suspicious, or legitimate. The rules examine characteristics of the URL such as length, use of symbols, inclusion of certain characters, HTTPS encryption, age of domain registration, PageRank, and presence of DNS records. If a URL meets the criteria in a rule, it is classified as either phishing, suspicious, or legitimate.

Uploaded by

Muhammad Ahtisham Asif
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 3

Rule 1: IF

Part has an IP Address Phishing


{If The DomainOtherwise
Legitimate

Rule

2: IF

URL length<54 feature=Legitimate


else if URLlength 5475 feature=Suspicious
otherwise feature=Phishing

Rule3: IF
TinyURL Phishing
{Otherwise
Legitimate

Rule 4: IF
Symbol Phishing
{Url Having@
Otherwise Legitimate

Rule 5: IF
Occurrence of / theURL> 7 Phishing
{The Position of Last Otherwise
Legitimate

Rule 6: IF
Symbol Phishing

Domain Name Part Includes

Rule 7: IF

Dots Domain Part=1 Legitimate


DotsDomain Part=2 Suspicious
Otherwise Phishing

Rule8: IF

Use httpsIssuer Is Trusted Age of Certificate 2 Years Legitimate


Using httpsIssuer Is Not Trusted Suspicious
Otherwise Phishing

Rule 9: IF
Part of The URL Phishing
{Using HTTP TokenDomain
Otherwise Legitimate

Rule 10: IF

of Request URL<22 Legitimate


%of Request URL 22 61 Suspicious
Otherwise feature=Phishing

Rule11: IF

of Links<Meta>, <Script>< Link> <17 Legitimate


of Links Meta> , <Script > and < Link> 17% And81% Suspicious # Otherwise Phishing } right none

Rule 12: IF
6 months Legitimate
{Age Of Domain
Otherwise Phishing

Rule 13: IF
For The Domain Phishing
{no DNS Record
Otherwise Legitimate

Rule 14: IF
<0.2 Phishing
{PageRank
Otherwise Legitimate

Rule 15: IF
IF URL contains any of the following charactersthe domain part

, 9, @ , , , ;
,

You might also like