An Assessment of Lexical, Network, and Content-Based Features for Detecting Malicious URLs Using Machine Learning and Deep Learning Models-Reference-Cited by-同舟云学术

An Assessment of Lexical, Network, and Content-Based Features for Detecting Malicious URLs Using Machine Learning and Deep Learning Models

Published:2022-08-25 Issue: Volume:2022 Page:1-14
ISSN:1687-5273
Container-title:Computational Intelligence and Neuroscience
language:en
Short-container-title:Computational Intelligence and Neuroscience

Author:

Aljabri Malak¹²^ORCID,Alhaidari Fahd³^ORCID,Mohammad Rami Mustafa A.⁴^ORCID,Samiha Mirza ²^ORCID,Alhamed Dina H.⁵^ORCID,Altamimi Hanan S.²^ORCID,Chrouf Sara Mhd. Bachar²^ORCID

Affiliation:

1. Department of Computer Science, College of Computer and Information Systems, Umm Al-Qura University, Makkah 21955, Saudi Arabia

2. SAUDI ARAMCO Cybersecurity Chair, Department of Computer Science, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

3. Department of Networks and Communications, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

4. Department of Computer Information Systems, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

5. SAUDI ARAMCO Cybersecurity Chair, Department of Computer Engineering, College of Computer Science and Information Technology, Imam Abdulrahman Bin Faisal University, P.O. Box 1982, Dammam 31441, Saudi Arabia

Abstract

The World Wide Web services are essential in our daily lives and are available to communities through Uniform Resource Locator (URL). Attackers utilize such means of communication and create malicious URLs to conduct fraudulent activities and deceive others by creating deceptive and misleading websites and domains. Such threats open the doors for many critical attacks such as spams, spyware, phishing, and malware. Therefore, detecting malicious URL is crucially important to prevent the occurrence of many cybercriminal activities. In this study, we examined a set of machine learning (ML) and deep learning (DL) models to detect malicious websites using a dataset comprising 66,506 records of URLs. We engineered three different types of features including lexical-based, network-based and content-based features. To extract the most discriminative features in the dataset, we applied several features selection algorithms, namely, correlation analysis, Analysis of Variance (ANOVA), and chi-square. Finally, we conducted a comparative performance evaluation for several ML and DL models considering set of criteria commonly used to evaluate such models. Results depicted that Naïve Bayes (NB) was the best model for detecting malicious URLs using the applied data with an accuracy of 96%. This research has made contribution to the field by conducting significant features engineering and analysis to identify the best features for malicious URLs predictions, compare different models and achieve a high accuracy using a large new URL dataset.

Funder

Imam Abdulrahman Bin Faisal University

Publisher

Hindawi Limited

Subject

General Mathematics,General Medicine,General Neuroscience,General Computer Science

Link

http://downloads.hindawi.com/journals/cin/2022/3241216.pdf

Reference48 articles.

1. Detecting malicious web links and identifying their attack types;H. Choi

2. A survey on heuristic malware detection techniques;Z. Bazrafshan

3. Intelligent Techniques for Detecting Network Attacks: Review and Research Directions

4. Detecting malicious URL;F. Alkhudair

5. Machine learning classifiers to detect malicious websites;C. Urcuqui,2017

Cited by 15 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Detection of phishing addresses and pages with a data set balancing approach by generative adversarial network (GAN) and convolutional neural network (CNN) optimized with swarm intelligence;Concurrency and Computation: Practice and Experience;2024-01-29

2. Identification and Classification of Malicious and Benign URL using Machine Learning Classifiers;2023 7th International Conference on I-SMAC (IoT in Social, Mobile, Analytics and Cloud) (I-SMAC);2023-10-11

3. A Decision-Fusion-Based Ensemble Approach for Malicious Websites Detection;Applied Sciences;2023-09-13

4. Classification of Malicious URLs Using Machine Learning;Sensors;2023-09-08

5. Machine Learning Models for Predicting Student Dropout—a Review;Proceedings of Eighth International Congress on Information and Communication Technology;2023-09-01