Phishing Domain Detection

Social engineering is one of the most dangerous threats facing every inpidual and modern organization. Phishing is a well-known, computer-based, social engineering technique. Attackers use disguised email addresses as a weapon to target large companies. With the huge number of phishing emails received every day, companies are not able to detect all of them. That is why new techniques and safeguards are needed to defend against phishing. This chapter will present the steps required to build three different machine learning-based projects to detect phishing attempts, using cutting-edge Python machine learning libraries.

In this chapter, we will cover:

• A social engineering overview
• The steps for social engineering penetration testing
• Building a real-time phishing attack detector using different machine learning models:
  • Phishing detection with logistic regression
  • Phishing detection with decision trees
  • Spam email detection with natural language processing (NLP)