We've developed a Chrome extension for detecting if a visited website is phish or not by comparing its content to the original, known good website.
- auntie_tuna-0.0.2.tar.gz (2016-01-20); current release
- phish_chrome_extension-0.0.1.tar.gz (2015-05-25)
The code is also available on git:
A paper about what we’re doing, AuntieTuna: Personalized Content-based Phishing Detection , to be presented at the 2016 NDSS Usable Security Workshop.
An early version of this work was presented at the 2015 IEEE Security and Privacy poster session (2015-05-18) : abstract and poster.
- 2016-01-20: renamed to AuntieTuna, version 0.0.2 released
- 2015-05-25: version 0.0.1 released
We’d greatly appreciate it if you could alpha test our plugin!
Currently (0.0.2) the plugin compares and detects PayPal phish by default. Users personalize and add their own “known-good” sites as they browse.
In your testing, we’d like to know your experience with:
- performance or installation issues
- false positives (did it say the page is suspected phish if it wasn’t?)
- false negatives (did it not detect an actual phish?)
- true positives (did it properly detect phish?)
Please send email to firstname.lastname@example.org with questions, bugs, feature requests, patches, and any notes on your usage!
- Go to Extensions (Window → Extensions) or enter URL “chrome://extensions/”
- Click on “Load unpacked extensions…”
- Select the directory containing this extension and click on “Select”
- Calvin Ardi and John Heidemann 2016. AuntieTuna: Personalized Content-Based Phishing Detection. Proceedings of the NDSS Workshop on Usable Security (San Diego, California, USA, Feb. 2016), to appear. [PDF] [Code] ["Details"]
- Calvin Ardi and John Heidemann 2015. Poster: Lightweight Content-based Phishing Detection. Technical Report ISI-TR-2015-698. USC/Information Sciences Institute. [PDF] ["Details"]
Copyright (C) 2016. University of Southern California.
This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.