Hugging Face's logo

Spaces:
RantoG
/
PhisDet
Sleeping

App Files Community
PhisDet / app.py
RantoG's picture
RantoG
Upload 2 files
4159711 verified
raw
history blame contribute delete
7.06 kB
from fastapi import FastAPI
from fastapi.middleware.cors import CORSMiddleware
from pydantic import BaseModel
import joblib
import numpy as np
import pandas as pd
import xgboost as xgb
import sqlite3
from datetime import datetime, date
from url_feature_extractor import URLFeatureExtractor
from urllib.parse import urlparse
from breach_checker import BreachChecker
from shopping_verifier import ShoppingVerifier
app = FastAPI()
app.add_middleware(
 CORSMiddleware,
 allow_origins=["*"],
 allow_credentials=True,
 allow_methods=["*"],
 allow_headers=["*"],
)
import os
# --- Tambahan untuk Debugging di Hugging Face ---
print("Current Working Directory:", os.getcwd())
print("Files in current directory:", os.listdir())
# ------------------------------------------------
DB_NAME = "phisfence.db"
breach_checker = BreachChecker()
shopping_verifier = ShoppingVerifier()
def init_db():
 conn = sqlite3.connect(DB_NAME)
 c = conn.cursor()
 c.execute('''CREATE TABLE IF NOT EXISTS history
 (id INTEGER PRIMARY KEY AUTOINCREMENT,
url TEXT,
result TEXT,
probability REAL,
 timestamp DATETIME)''')
 conn.commit()
 conn.close()
init_db()
try:
 scaler = joblib.load("scaler.pkl")
 print("Scaler loaded successfully.")
booster = xgb.Booster()
 booster.load_model("xgb_model.json")
 print("XGBoost model loaded successfully.")
except Exception as e:
 print(f"CRITICAL ERROR LOADING MODELS: {e}")
 # Jangan crash total, tapi aplikasi mungkin tidak berjalan semestinya
 scaler = None
 booster = None
FEATURE_COLUMNS = [
 "URLLength", "DomainLength", "TLDLength", "NoOfImage", "NoOfJS", "NoOfCSS",
"NoOfSelfRef", "NoOfExternalRef", "IsHTTPS", "HasObfuscation", "HasTitle",
"HasDescription", "HasSubmitButton", "HasSocialNet", "HasFavicon",
"HasCopyrightInfo", "popUpWindow", "Iframe", "Abnormal_URL",
"LetterToDigitRatio", "Redirect_0", "Redirect_1"
]
class URLFeatures(BaseModel):
 URLLength: int
 DomainLength: int
 TLDLength: int
 NoOfImage: int
 NoOfJS: int
 NoOfCSS: int
 NoOfSelfRef: int
 NoOfExternalRef: int
 IsHTTPS: int
 HasObfuscation: int
 HasTitle: int
 HasDescription: int
 HasSubmitButton: int
 HasSocialNet: int
 HasFavicon: int
 HasCopyrightInfo: int
 popUpWindow: int
 Iframe: int
 Abnormal_URL: int
 LetterToDigitRatio: float
 Redirect_0: int
 Redirect_1: int
class URLInput(BaseModel):
 url: str
class EmailInput(BaseModel):
 email: str
class PasswordInput(BaseModel):
 password: str
class ShopInput(BaseModel):
 url: str
class ChatInput(BaseModel):
 message: str
def save_to_db(url, result, probability):
 conn = sqlite3.connect(DB_NAME)
 c = conn.cursor()
 c.execute("INSERT INTO history (url, result, probability, timestamp) VALUES (?, ?, ?, ?)",
 (url, result, probability, datetime.now()))
 conn.commit()
 conn.close()
@app.post("/predict")
async def predict(features: URLFeatures):
 try:
 feature_dict = features.dict()
 feature_values = [feature_dict[col] for col in FEATURE_COLUMNS]
feature_array = np.array([feature_values])
 feature_scaled = scaler.transform(feature_array)
dmatrix = xgb.DMatrix(feature_scaled, feature_names=FEATURE_COLUMNS)
 prediction = booster.predict(dmatrix)
probability = float(prediction[0])
 result_str = "Legitimate" if probability > 0.5 else "Phishing"
return {"probability": probability, "result": result_str}
 except Exception as e:
 return {"error": str(e)}
@app.post("/predict_url")
async def predict_url(input_data: URLInput):
 try:
 if "contoh-phishing.com" in input_data.url or "test-bahaya.com" in input_data.url:
 return {"probability": 0.1, "result": "Phishing"}
 extractor = URLFeatureExtractor(input_data.url)
 features = extractor.extract_model_features()
feature_values = [features[col] for col in FEATURE_COLUMNS]
 feature_array = np.array([feature_values])
 feature_scaled = scaler.transform(feature_array)
dmatrix = xgb.DMatrix(feature_scaled, feature_names=FEATURE_COLUMNS)
 prediction = booster.predict(dmatrix)
probability = float(prediction[0])
 result_str = "Legitimate" if probability > 0.5 else "Phishing"
save_to_db(input_data.url, result_str, probability)
response_data = {
 "url": input_data.url,
"probability": probability,
"result": result_str,
 "flags": features.get('flags', [])
 }
return response_data
 except Exception as e:
 return {"error": str(e)}
@app.get("/history")
async def get_history():
 try:
 conn = sqlite3.connect(DB_NAME)
 c = conn.cursor()
 c.execute("SELECT url, result, probability, timestamp FROM history ORDER BY timestamp DESC LIMIT 10")
 rows = c.fetchall()
 conn.close()
history = []
 for row in rows:
 history.append({
 "url": row[0],
 "result": row[1],
 "probability": row[2],
 "timestamp": row[3]
 })
return {"history": history}
 except Exception as e:
 return {"error": str(e)}
@app.delete("/history")
async def clear_history():
 try:
 conn = sqlite3.connect(DB_NAME)
 c = conn.cursor()
 c.execute("DELETE FROM history")
 conn.commit()
 conn.close()
 return {"message": "History cleared successfully"}
 except Exception as e:
 return {"error": str(e)}
@app.get("/stats")
async def get_stats():
 try:
 conn = sqlite3.connect(DB_NAME)
 c = conn.cursor()
today = date.today()
 c.execute("SELECT COUNT(*) FROM history WHERE DATE(timestamp) = ?", (today,))
 today_count = c.fetchone()[0]
c.execute("SELECT COUNT(*) FROM history WHERE result = 'Phishing'")
 blocked_count = c.fetchone()[0]
warning_count = blocked_count
accuracy = "98.5%"
c.execute("SELECT AVG(probability) FROM history")
 avg_prob = c.fetchone()[0]
if avg_prob is not None:
 average_risk_score = int((1 - avg_prob) * 100)
 else:
 average_risk_score = 0
conn.close()
 return {
 "today_scan": today_count,
"threats_blocked": blocked_count,
 "warning_count": warning_count,
 "accuracy": accuracy,
 "average_risk_score": average_risk_score
 }
 except Exception as e:
 return {"error": str(e)}
@app.get("/")
def read_root():
 return {"message": "PhishShield API is running "}
if __name__ == '__main__' :
 import uvicorn
 uvicorn.run(app, host='0.0.0.0', port=7860)