论文信息 - Exploring and Identifying Malicious Sites in Dark Web Using Machine Learning

Exploring and Identifying Malicious Sites in Dark Web Using Machine Learning

In recent years, various web-based attacks such as Drive-by-Download attacks are becoming serious. To protect legitimate users, it is important to collect information on malicious sites that could provide a blacklist-based detection software. In our study, we propose a system to collect URLs of malicious sites in the dark web. The proposed system automatically crawls dark web sites and collects malicious URLs that are judged by using VirusTotal and the Gred engine. We also predict dangerous categories of collected web sites that are potentially malicious using a document embedding with a gradient boosting decision tree model. In the experiments, we demonstrate that the proposed system can predict dangerous site categories with 0.82 accuracy in F1-score.

Seiichi Ozawa | Yuki Kawaguchi

[1] Tie-Yan Liu,et al. LightGBM: A Highly Efficient Gradient Boosting Decision Tree , 2017, NIPS.

[2] M. Saar,et al. Thermal damping and retardation in karst conduits , 2014 .

[3] Leo Breiman,et al. Random Forests , 2001, Machine Learning.

[4] Ahmad Diab,et al. Darknet and deepnet mining for proactive cybersecurity threat intelligence , 2016, 2016 IEEE Conference on Intelligence and Security Informatics (ISI).

[5] Nick Mathewson,et al. Tor: The Second-Generation Onion Router , 2004, USENIX Security Symposium.

[6] Harish Karnick,et al. SCDV : Sparse Composite Document Vectors using soft clustering over distributional representations , 2016, EMNLP.

[7] Stephen E. Robertson,et al. Understanding inverse document frequency: on theoretical arguments for IDF , 2004, J. Documentation.

[8] Tomas Mikolov,et al. Enriching Word Vectors with Subword Information , 2016, TACL.

[9] J. Friedman. Greedy function approximation: A gradient boosting machine. , 2001 .

[10] Jeffrey Dean,et al. Distributed Representations of Words and Phrases and their Compositionality , 2013, NIPS.

[11] Paulo Shakarian,et al. DarkEmbed: Exploit Prediction With Neural Language Models , 2018, AAAI.