antiphish's People
antiphish's Issues
Additional investigation on boilerplate code
After testing the boilerplate code that we initially wanted to go with, I found that it was too complicated and there was not enough documentation to understand on it. I have identified two potential boilerplate that we can use OR we can go over the original boilerplate code that was chosen last semester and try to figure out how the layout works.
- Original boilerplate code that we selected last semester: https://github.com/EmailThis/extension-boilerplate
- The boilerplate codes that I identified and tested:
https://extensionizr.com/!#{%22modules%22:[%22hidden-mode%22,%22with-bg%22,%22with-persistent-bg%22,%22no-options%22,%22no-override%22],%22boolean_perms%22:[],%22match_ptrns%22:[]}
https://github.com/duo-labs/chrome-extension-boilerplate
UI for the plugin
- Create the UI dropdown and plugin button
- Leave a default value for the percentage score, this field will be connected by the backend
- Use these mockups as a rough guideline: https://github.com/pranmar123/AntiPhish/wiki/Name-&-Logo-Design
Gmail.js API List
- Look at the gmail.js docs and come up with a list of API calls that our programs need to make in order to get the following:
- The email body text
- The sender's email and name
- If there is no body text and there is only an image in the body, then get the link of that image.
Integrate gmail.js api to our boilerplate code
Integrate gmail.js api to our boilerplate code
Use these repos for reference:
https://github.com/KartikTalwar/gmail.js/
https://github.com/josteink/gmailjs-node-boilerplate
Investigate external APIs
- Explore the possibility of using an external API instead of creating our own script for determining phishing links
- We should be able to send URLS to this API and it tells us if its a scam or not
- Dashon suggested using: Google Safe Browsing API
WebAccessibleResources Problem
Problem: Gmail.js API is not loading before chrome loads Gmail.
- Look into adding WebAccessibleResources
- Goal is to have our script load before Chrome loads Gmail.
Set up a docker container
- Set up a docker container with a script for our plugin to work with
- Research how we can connect the docker container with our plugin
Error with including requirements on the script
- @Abdulyafai Can you provide a screenshot of the error?
Test a smiliar plugin and write a report
- Test: https://github.com/brandonnix95/EmailPhishing
- Provide a summary of impressions, suggestions, and results from the tests.
Create boilerplate code from Extensionizr
- Research and determine the appropriate settings needed for our extension
- Create the boilerplate code from Exensionizr
- Integrate that code into our codebase
Research possible methods of communication between the API and our extension
- Look into how our extension can talk to the external API (or our own scripts)
- Look into how our extension can send HTML or links or text to a docker container
- Set up the docker container and find a server to host it on
Phishing Grading Algorithm
- Create a python script that will take in input text (the body of a message), but if there is not any text in the body of the email, then extract the link of the picture (send that over to the Google API)
- Take in the sender's email address as an input and see if we can do anything with that
- Figure out common phishing email patterns (grammar mistakes, the sender's email, etc.)
- Come up with the algorithm
- Document the rules used and the weights for each of the rules
Investigate image-based phishing emails
- Look into and find out how many phishing emails contain images
- Find out whether the emails that contain images are links (when you click the image it directs you to a site) or if they are just images that have phishing text on them
- Think of any methods of how we can analyze the text from the images
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.