0

As the question says, can anybody give insights on how anti phishing works in Google Safe Browsing?

Does it just use a database of detected phishing URLs or does it use any heuristic?

Noam M
  • 107
  • 1
  • 8
user5155835
  • 351
  • 2
  • 3
  • 10

1 Answers1

3

Google Safe Browsing just checks against a database provided by Google if the visited URL is potentially malicious. There are no heuristics employed by the client using Google Safe Browsing but instead every intelligence is in the crawling and classification process done by Google.

Steffen Ullrich
  • 184,332
  • 29
  • 363
  • 424
  • Thanks. Please can you describe the intelligence in the crawling and classification process done by Google? – user5155835 Jul 23 '17 at 05:29
  • 1
    @user5155835: The process is proprietary and not publicly documented. [What tools does the Google safe browsing service rely on?](https://security.stackexchange.com/questions/65104/what-tools-does-the-google-safe-browsing-service-rely-on) gives some insight into the few known details and [Large-Scale Automatic Classification of Phishing Pages](https://static.googleusercontent.com/media/research.google.com/en//pubs/archive/35580.pdf) too. – Steffen Ullrich Jul 23 '17 at 06:50
  • Thanks. Please update me if you get any additional information. I've accepted the answer :) – user5155835 Jul 23 '17 at 07:39