Comparison between PhishIntention and baselines
Phishpedia vs. PhishIntention
(false negative and true positive)
(false negative and true positive)
Phishpedia
(Excel logo can't be reported)
PhishIntention
(Excel logo can be reported)
Phishpedia
(Square logo can't be reported)
PhishIntention
(Square logo can be reported)
Phishpedia
(Facebook logo bounding box shouldn't include the green button inside)
PhishIntention
(Facebook logo bounding box is more accurate)
VisualPhishNet vs. PhishIntention
(false negative and true positive)
(false negative and true positive)
VisualPhishNet
Match to wrong template from NedBank
PhishIntention results on original screenshot
Correctly matched to credit agricole brand
VisualPhishNet
The most similar match in reference database has matched distance = 1.05 (too large)
PhishIntention results on original screenshot
Correctly matched to DGI (French Tax Authority) brand
VisualPhishNet
The most similar match in reference database has matched distance = 1.87 (too large)
PhishIntention results on original screenshot
Correctly matched to Chase brand
Phishpedia vs. PhishIntention
(false positive and true negative)
(false positive and true negative)
Phishpedia
Phishpedia doesn't have CRP classifier, so it fully trust the Siamese matching result
PhishIntention
Siamese wrongly match it to Yahoo! brand, but CRP classifier predicts it as nonCRP so it is suppressed
Phishpedia
Phishpedia recognises identity logo as Google in google translation bar, thus it is matched to Google brand
PhishIntention
PhishIntention predicts its logo as "Link Never Die", which is the correct identity logo
Phishpedia
Phishpedia doesn't have CRP classifier, so it fully trust the Siamese matching result
PhishIntention
Matched to Youtube brand, but suppressed by CRP classifier (predict it as nonCRP)
VisualPhishNet vs. PhishIntention
(false positive and true negative)
(false positive and true negative)
VisualPhishNet
Wrongly match to a template with similar color scheme
PhishIntention results on original screenshot
No target can be matched
VisualPhishNet
Wrongly match to a template with similar color scheme
PhishIntention results on original screenshot
No target can be matched
VisualPhishNet
Wrongly match to a template with similar color scheme
PhishIntention results on original screenshot
No target can be matched
PhishIntention false positive examples
It is a CRP page with LinkedIn logo, it looks suspicious but may not be a phishing page
The search bars confuse the CRP classifier, making it to believe this page is credential-requiring
It is a CRP page with Google logo, but doesnt seem to be a phishing website
Its logo is very similar to Google logo
It is a CRP page with Excel logo, but doesnt seem to be a phishing website
PhishIntention false negative examples
The website is poorly developed, it does not have any logo
The website is poorly developed, it does not have any logo
The color design of the website is too dim
Special phishing: requires user to interact (press Execute button)
Special phishing: requires user to interact (enter CAPTCHA)