Abstract
Due to the development of E-commerce, phishing attacks are one of the major current cyber threats. Phishing attacks have become increasingly sophisticated and have exploited both individuals and organizations. For the enterprise, a successful duplicate phishing website may affect an organizations reputation or be the basis of a subdomain takeover attack. This latter attack can completely escape the detection of an SSL certificate and have a direct impact on the enterprise. A successful subdomain takeover attack has a higher threat level as a controllable subdomain owns the same SSL certificate with its parent website, and yet it does not require an advanced technical skill to exploit. In this paper, two techniques have been presented as potential solutions. One is a query approach based on machine learning for querying existing subdomains and the second is an auto-detection system to identify the potentially risky subdomains.
| Original language | English |
|---|---|
| Title of host publication | 2021 international conference on cyber situational awareness, data analytics and assessment (CyberSA) |
| Place of Publication | Piscataway, NJ |
| Publisher | IEEE Computer Society |
| Pages | 1-10 |
| Number of pages | 10 |
| ISBN (Electronic) | 9781665425292 |
| ISBN (Print) | 9781665430920 |
| DOIs | |
| Publication status | Published - 12 Jul 2021 |
| Event | 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA 2021) - Virtual conference Duration: 14 Jun 2021 → 18 Jun 2021 |
Conference
| Conference | 2021 International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA 2021) |
|---|---|
| Abbreviated title | CyberSA 2021 |
| Period | 14/06/21 → 18/06/21 |
Keywords
- Phishing
- Subdomain enumeration tools
- Subdomain takeover attack
- Subdomain takeover detection