Saeed Abu-Nimeh scite author profile

There are many applications available for phishing detection. However, unlike predicting spam, there are only few studies that compare machine learning techniques in predicting phishing. The present study compares the predictive accuracy of several machine learning methods including Logistic Regression (LR), Classification and Regression Trees (CART), Bayesian Additive Regression Trees (BART), Support Vector Machines (SVM), Random Forests (RF), and Neural Networks (NNet) for predicting phishing emails. A data set of 2889 phishing and legitimate emails is used in the comparative study. In addition, 43 features are used to train and test the classifiers.

show abstract

Malicious and Spam Posts in Online Social Networks

Abu-Nimeh¹,

Alzubi

2011

Computer

View full text Add to dashboard Cite

show abstract

Circumventing security toolbars and phishing filters via rogue wireless access points

Abu-Nimeh

Nair

2010

Wireless Communications

View full text Add to dashboard Cite

One of the solutions that has been widely used by naive users to protect against phishing attacks is security toolbars or phishing filters in web browsers. The present study proposes a new attack to bypass security toolbars and phishing filters via local DNS poisoning without the need of an infection vector. A rogue wireless access point (AP) is set up, poisoned DNS cache entries are used to forge the results provided to security toolbars, and thus misleading information is displayed to the victim. Although there are several studies that demonstrate DNS poisoning attacks, none to our best knowledge investigate whether such attacks can circumvent security toolbars or phishing filters. Five well‐known security toolbars and three reputable browser built‐in phishing filters are scrutinized, and none of them detect the attack. So ineptly, security toolbars provide the victim with false confirmative indicators that the phishing site is legitimate. Copyright © 2009 John Wiley & Sons, Ltd.

show abstract

Avoiding Denial of Service via Stress Testing

Abu-Nimeh

Nair

Marchetti

2006

View full text Add to dashboard Cite

Stress-testing has been widely used by businesses, governments, and other organizations to evaluate the strength of their web applications against various attacks. However, the quality of these tests is under constant scrutiny to determine their effectiveness. The present study compares four stress-testing tools, by performing the tests on two major web-based applications. All of the tools used are open source, and run on Win32 platform. The test scenarios are recorded from server log files to make the tests more realistic. Lastly, we discuss how to use stress-testing tools as a measure to avoid Denial of Service attacks on web servers and web applications.

show abstract

Bypassing Security Toolbars and Phishing Filters via DNS Poisoning

Abu-Nimeh

Nair

2008

View full text Add to dashboard Cite

Security toolbars are used to protect naive users against phishing attacks by displaying warnings on suspicious sites. Recently, web browsers have added built-in phishing filters mimicking the same functionality to detect phishing sites. The present study proposes a new attack to bypass security toolbars and phishing filters via DNS poisoning. Spoofed DNS cache entries are used to forge the results provided to security toolbars and thus misleading information is displayed to the victim. Although there are several studies that demonstrate DNS poisoning attacks, none to our best knowledge, investigate whether such attacks can circumvent security toolbars or phishing filters. Four well-known security toolbars and three reputable browser builtin phishing filters are scrutinized. None of the seven tools detect the attack. Worse still, security toolbars provide the victim with false confirmative indicators that the phishing site is legitimate.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Saeed Abu-Nimeh

A comparison of machine learning techniques for phishing detection

Malicious and Spam Posts in Online Social Networks

Circumventing security toolbars and phishing filters via rogue wireless access points

Avoiding Denial of Service via Stress Testing

Bypassing Security Toolbars and Phishing Filters via DNS Poisoning

Contact Info

Product

Resources

About