{"id":"https://openalex.org/W3212665059","doi":"https://doi.org/10.1145/3460120.3484765","title":"Catching Transparent Phish: Analyzing and Detecting MITM Phishing Toolkits","display_name":"Catching Transparent Phish: Analyzing and Detecting MITM Phishing Toolkits","publication_year":2021,"publication_date":"2021-11-12","ids":{"openalex":"https://openalex.org/W3212665059","doi":"https://doi.org/10.1145/3460120.3484765","mag":"3212665059"},"language":"en","primary_location":{"id":"doi:10.1145/3460120.3484765","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3460120.3484765","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5026628469","display_name":"Brian Kondracki","orcid":null},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Brian Kondracki","raw_affiliation_strings":["Stony Brook University, Stony Brook, NY, USA"],"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, NY, USA","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022295997","display_name":"Babak Amin Azad","orcid":"https://orcid.org/0000-0002-1370-9305"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Babak Amin Azad","raw_affiliation_strings":["Stony Brook University, Stony Brook, NY, USA"],"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, NY, USA","institution_ids":["https://openalex.org/I59553526"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5066620366","display_name":"Oleksii Starov","orcid":"https://orcid.org/0000-0002-2796-6345"},"institutions":[{"id":"https://openalex.org/I4210108451","display_name":"Palo Alto Networks (United States)","ror":"https://ror.org/01rn6rn86","country_code":"US","type":"company","lineage":["https://openalex.org/I4210108451"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Oleksii Starov","raw_affiliation_strings":["Palo Alto Networks, Santa Clara, CA, USA"],"affiliations":[{"raw_affiliation_string":"Palo Alto Networks, Santa Clara, CA, USA","institution_ids":["https://openalex.org/I4210108451"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014031812","display_name":"Nick Nikiforakis","orcid":"https://orcid.org/0000-0002-9366-357X"},"institutions":[{"id":"https://openalex.org/I59553526","display_name":"Stony Brook University","ror":"https://ror.org/05qghxh33","country_code":"US","type":"education","lineage":["https://openalex.org/I59553526"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Nick Nikiforakis","raw_affiliation_strings":["Stony Brook University, Stony Brook, NY, USA"],"affiliations":[{"raw_affiliation_string":"Stony Brook University, Stony Brook, NY, USA","institution_ids":["https://openalex.org/I59553526"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5026628469"],"corresponding_institution_ids":["https://openalex.org/I59553526"],"apc_list":null,"apc_paid":null,"fwci":7.1606,"has_fulltext":false,"cited_by_count":36,"citation_normalized_percentile":{"value":0.97091052,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"36","last_page":"50"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9926000237464905,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9836999773979187,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.9305815696716309},{"id":"https://openalex.org/keywords/man-in-the-middle-attack","display_name":"Man-in-the-middle attack","score":0.7901404500007629},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7366108298301697},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5631590485572815},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.5585833191871643},{"id":"https://openalex.org/keywords/session","display_name":"Session (web analytics)","score":0.48405733704566956},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.41809284687042236},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.2378254532814026},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.16516858339309692}],"concepts":[{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.9305815696716309},{"id":"https://openalex.org/C196491621","wikidata":"https://www.wikidata.org/wiki/Q554830","display_name":"Man-in-the-middle attack","level":3,"score":0.7901404500007629},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7366108298301697},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5631590485572815},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.5585833191871643},{"id":"https://openalex.org/C2779182362","wikidata":"https://www.wikidata.org/wiki/Q17126187","display_name":"Session (web analytics)","level":2,"score":0.48405733704566956},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.41809284687042236},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.2378254532814026},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.16516858339309692}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3460120.3484765","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3460120.3484765","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.4300000071525574,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G1630140913","display_name":null,"funder_award_id":"CMMI-1842020,CNS-1813974,CNS-1941617,CNS-2126654","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W18105143","https://openalex.org/W83428783","https://openalex.org/W1498756827","https://openalex.org/W1525094897","https://openalex.org/W1985920648","https://openalex.org/W1986678144","https://openalex.org/W2012481173","https://openalex.org/W2023973750","https://openalex.org/W2160289821","https://openalex.org/W2160353917","https://openalex.org/W2166731089","https://openalex.org/W2424402128","https://openalex.org/W2531223178","https://openalex.org/W2533677686","https://openalex.org/W2560764233","https://openalex.org/W2585020995","https://openalex.org/W2753871665","https://openalex.org/W2765227388","https://openalex.org/W2779627157","https://openalex.org/W2800717006","https://openalex.org/W2807822918","https://openalex.org/W2886377174","https://openalex.org/W2933056782","https://openalex.org/W2945441410","https://openalex.org/W2963792772","https://openalex.org/W3106934761","https://openalex.org/W4298869031"],"related_works":["https://openalex.org/W853046806","https://openalex.org/W2152125702","https://openalex.org/W1536059956","https://openalex.org/W2148690567","https://openalex.org/W4389115301","https://openalex.org/W3125165999","https://openalex.org/W4240774184","https://openalex.org/W2801930800","https://openalex.org/W2930089461","https://openalex.org/W2048968742"],"abstract_inverted_index":{"For":[0],"over":[1],"a":[2],"decade,":[3],"phishing":[4,14,19,75],"toolkits":[5,20,29],"have":[6],"been":[7],"helping":[8],"attackers":[9],"automate":[10,62],"and":[11,48,69],"streamline":[12],"their":[13],"campaigns.":[15],"Man-in-the-":[16],"Middle":[17],"(MITM)":[18],"are":[21],"the":[22,57,63,72],"latest":[23],"evolution":[24],"in":[25,51],"this":[26],"space,":[27],"where":[28],"act":[30],"as":[31],"malicious":[32],"reverse":[33],"proxy":[34],"servers":[35],"of":[36,65,74],"online":[37],"services,":[38],"mirroring":[39],"live":[40],"content":[41],"to":[42],"users":[43],"while":[44],"extracting":[45],"cre-":[46],"dentials":[47],"session":[49],"cookies":[50],"transit.":[52],"These":[53],"tools":[54],"further":[55],"reduce":[56],"work":[58],"required":[59],"by":[60],"attackers,":[61],"harvesting":[64],"2FA-":[66],"authenticated":[67],"sessions,":[68],"substantially":[70],"increase":[71],"believability":[73],"web":[76],"pages.":[77]},"counts_by_year":[{"year":2025,"cited_by_count":10},{"year":2024,"cited_by_count":11},{"year":2023,"cited_by_count":9},{"year":2022,"cited_by_count":6}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}