An ensemble classification method based on machine learning models for malicious Uniform Resource Locators (URL)

Sankaranarayanan, Suresh and Sivachandran, Arvinthan Thevar and Khairuddin, Anis Salwa Mohd and Hasikin, Khairunnisa and Sait, Abdul Rahman Wahab (2024) An ensemble classification method based on machine learning models for malicious Uniform Resource Locators (URL). PLoS ONE, 19 (5). e0302196. ISSN 1932-6203, DOI https://doi.org/10.1371/journal.pone.0302196.

Full text not available from this repository.
Official URL: https://doi.org/10.1371/journal.pone.0302196

Abstract

Web applications are important for various online businesses and operations because of their platform stability and low operation cost. The increasing usage of Internet-of-Things (IoT) devices within a network has contributed to the rise of network intrusion issues due to malicious Uniform Resource Locators (URLs). Generally, malicious URLs are initiated to promote scams, attacks, and frauds which can lead to high-risk intrusion. Several methods have been developed to detect malicious URLs in previous works. There has been a good amount of work done to detect malicious URLs using various methods such as random forest, regression, LightGBM, and more as reported in the literature. However, most of the previous works focused on the binary classification of malicious URLs and are tested on limited URL datasets. Nevertheless, the detection of malicious URLs remains a challenging task that remains open to research. Hence, this work proposed a stacking-based ensemble classifier to perform multi-class classification of malicious URLs on larger URL datasets to justify the robustness of the proposed method. This study focuses on obtaining lexical features directly from the URL to identify malicious websites. Then, the proposed stacking-based ensemble classifier is developed by integrating Random Forest, XGBoost, LightGBM, and CatBoost. In addition, hyperparameter tuning was performed using the Randomized Search method to optimize the proposed classifier. The proposed stacking-based ensemble classifier aims to take advantage of the performance of each machine learning model and aggregate the output to improve prediction accuracy. The classification accuracies of the machine learning model when applied individually are 93.6%, 95.2%, 95.7% and 94.8% for random forest, XGBoost, LightGBM, and CatBoost respectively. The proposed stacking-based ensemble classifier has shown significant results in classifying four classes of malicious URLs (phishing, malware, defacement, and benign) with an average accuracy of 96.8% when benchmarked with previous works.

Item Type: Article
Funders: Deanship of Scientific Research, Vice Presidency of Graduate studies and Scientific Research, King Faisal University, Saudi Arabia (4289) ; (IMG001-2022), Deanship of Scientific Research, Vice presidency of Graduate Studies and Scientific Research, King Faisal University, KSA
Uncontrolled Keywords: Machine learning models; Uniform Resource Locators
Subjects: Q Science > QA Mathematics > QA75 Electronic computers. Computer science
T Technology > TK Electrical engineering. Electronics Nuclear engineering
Divisions: Faculty of Engineering
Depositing User: Ms. Juhaida Abd Rahim
Date Deposited: 26 Sep 2024 01:54
Last Modified: 26 Sep 2024 01:54
URI: http://eprints.um.edu.my/id/eprint/45208

Actions (login required)

View Item View Item
UM Research Repository is powered by EPrints 3 which is developed by the School of Electronics and Computer Science at the University of Southampton. More information and software credits.