🛡️ PhishShield – Phishing Takedown Platform for PSBs 💡 Inspiration The increasing cases of phishing scams targeting customers of Public Sector Banks (PSBs) in India—especially websites impersonating official portals—motivated me to create a solution. Many such phishing domains stay live for days due to lack of quick detection, manual takedown processes, and jurisdictional hurdles. A recent analysis of takedown delays and the lack of automation in this space revealed a major gap. I envisioned PhishShield, a platform that uses AI and automation to enable faster, smarter takedowns, starting with PSBs.

⚙️ What It Does PhishShield is an AI-powered phishing takedown platform that:

Detects phishing websites using ML models trained on domain and content patterns.

Allows banks, CERTs, and users to report phishing links via a reporting portal.

Automates takedown requests by integrating with domain registrars and escalates through CERTs if needed.

Tracks progress in a centralized dashboard with real-time status updates.

Maintains secure, immutable records of actions taken using blockchain.

Ensures data security with encryption and identity/authentication services.

🏗️ How I Built It The platform is hosted on IBM Cloud and consists of multiple integrated modules:

  1. AI-Powered Phishing Detection Tools: IBM Watson Studio, Watson NLU

ML Models: Trained using Scikit-learn and TensorFlow

Serverless detection logic with IBM Cloud Functions

  1. Reporting Interface Frontend: Built using React.js

Backend: Python Flask APIs via IBM API Connect

Allows banks, users, and CERTs to report suspicious URLs

  1. Centralized Dashboard Tools: IBM Cloud Foundry, IBM Cloud Databases

Tech Stack: React.js + Flask backend

Tracks reported phishing sites, takedown status, timestamps

  1. Registrar Integration Takedown automation via REST APIs (GoDaddy, Namecheap, etc.)

Escalation process built into workflow for non-API registrars

  1. Blockchain-Backed Action Logs Tools: IBM Blockchain Platform

Secure and immutable record of takedown requests and status

  1. Real-Time Progress Tracking IBM Cloud Monitoring + WebSocket polling

Updates visible to all stakeholders instantly

  1. Security & Compliance Tools: IBM Cloud Identity, Encrypted IBM Cloud Databases

Auth: OAuth 2.0 and JWT-based authentication for all users

🧗 Challenges I Ran Into Acquiring and cleaning phishing domain datasets.

Ensuring accurate detection while minimizing false positives.

Automating registrar takedown requests where API support is limited.

Integrating IBM Blockchain with Flask securely.

Balancing performance with free-tier scalability on IBM Cloud.

🏅 Accomplishments That I'm Proud Of Building a fully functional prototype that mimics real-world phishing takedown operations.

Automating takedown requests, drastically reducing manual effort.

Creating a real-time dashboard for multiple stakeholders.

Successfully integrating multiple IBM Cloud services, AI tools, and Blockchain.

📚 What I Learned End-to-end development using the IBM Cloud ecosystem.

Working with Watson Studio and NLU for NLP-based threat detection.

Implementing secure APIs, encryption standards, and OAuth.

Practical exposure to cross-border cyber law considerations.

🔮 What's Next for PhishShield Training the AI model with larger, real-world datasets.

Adding multilingual support for phishing content in regional Indian languages.

Partnering with PSBs and government agencies to deploy a live pilot.

Introducing alerting systems via SMS/Email for banks/customers.

Integrating with Indian CERT and law enforcement APIs for real-time action.

Built With

Share this project:

Updates