PhishAID
PhishAid: A Tool for Phishing Website Detection
PhishAID is an academic cybersecurity project that detects phishing websites
using a transparent, deterministic, rule-based framework.
Enter a complete URL (including protocol) to evaluate phishing indicators
using explainable security rules.
Check Website
Please enter the complete URL including
http:// or https://
Analyzing website using rule-based engine…
PhishAID Detection Categories (Rule Framework)
Category A — URL & Transport-Level Rules
Rule 1 – HTTPS usageRule 2 – Raw IP detectionRule 3 – URL lengthRule 4 – @ symbolRule 5 – Subdomain depthRule 6 – Suspicious TLDRule 7 – Certificate age (proxy for domain age)Rule 8 – Hyphen usageRule 9 – URL shortenersRule 10 – Login keywords
Category B — Identity Deception
Rule 21 – Unicode / homoglyph detectionRule 22 – Typosquatting (edit-distance logic)
Category C — Structural Anomaly
Rule 18 – Clone phishing (DOM similarity heuristic)
Category D — Semantic Intent
Rule 30 – Semantic phishing intent (heuristic, not AI)
Special Note: 11–17, 19, 20, 23, 25, 27–29 are part of the PhishAID
framework and are reserved for future implementation
due to higher engineering and data requirements.
Rule-Based Evaluation (Rules 1–30)
Domain
Rule #
Description
Status
Score