i-manager Publications

Phishing Website Detection System using Machine Learning

Precious Max Kamkwamba*

Department of Computer Science, DMI St John The Baptist University, Mangochi, Malawi.

Periodicity:July - September'2025

Abstract

Phishing websites continue to pose a significant threat to online security by tricking users into revealing sensitive data such as login credentials and financial information. Traditional detection methods like blacklists typically fail to identify newly launched phishing websites. This paper presents a machine learning-based system that classifies websites as phishing or legitimate based on URL features. Supervised algorithms, including Random Forest and Decision Tree, were used for training and testing. The system extracts lexical and structural features from URLs and uses these to train models. Random Forest outperformed other models in accuracy, robustness, and execution efficiency. A web interface was developed to allow real-time URL submission and classification. Experimental evaluation shows that the system achieves a 96.2% accuracy and a ROC-AUC of 0.98, outperforming baseline blacklist approaches by 17.8% in accuracy. The system is lightweight, making it practical for real-time phishing detection in resource-constrained environments. This work demonstrates the potential of machine learning to enhance phishing prevention and strengthen cybersecurity defenses.

Keywords

Phishing Detection, Machine Learning, Random Forest, URL Analysis, Cybersecurity, Decision Tree.

How to Cite this Article?

Kamkwamba, P. M. (2025). Phishing Website Detection System using Machine Learning. i-manager’s Journal on Computer Science, 13(2), 1-5.

References

[1]. Abdelhamid, N., Ayesh, A., & Thabtah, F. (2014). Phishing detection based associative classification data mining. Expert Systems with Applications, 41(13), 5948-5959.

[2]. Afroz, S., & Greenstadt, R. (2011). Phishzoo: Detecting phishing websites by looking at them. In 2011 IEEE Fifth International Conference on Semantic Computing (pp. 368-375). IEEE.

[3]. Asiri, S., Xiao, Y., & Li, T. (2023). Phishtransformer: A novel approach to detect phishing attacks using URL collection and transformer. Electronics, 13(1), 30.

[4]. Jamal, S., & Wimmer, H. (2023). An improved transformer-based model for detecting phishing, spam, and ham: A large language model approach. arXiv preprint arXiv:2311.04913.

[5]. Mohammad, R. M., Thabtah, F., & McCluskey, L. (2014). Predicting phishing websites based on self- structuring neural network. Neural Computing and Applications, 25(2), 443-458.

[6]. Pallets. (2010). Flask's Documentation.

[7]. Scikit-learn. (2024). Scikit-learn: Machine Learning in Python.

[8]. Songailaite, M. Kankevičiute, E., Zhyhun, B., & Mandravickaite, J. (2023). BERT-based models for phishing detection. In 28th Conference on Information Society and University Studies (IVUS'2023), CEUR Workshop Proceedings, Kaunas, Lithuania (pp. 1-11).

[9]. Verma, R., Shashidhar, N., & Hossain, N. (2012). Detecting phishing emails the natural language way. In European Symposium on Research in Computer Security (pp. 824-841).

	North Americas,UK, Middle East,Europe		India	Rest of world
	USD	EUR	INR	USD-ROW
Pdf	35	35	200	20
Online	15	15	200	15
Pdf & Online	35	35	400	25

Phishing Website Detection System using Machine Learning

Abstract

Keywords

How to Cite this Article?

References

If you have access to this article please login to view the article or kindly login to purchase the article

Purchase Instant Access

Options for accessing this content: