First Defense

An iOS app that allows you to test URL's for certain security features through a virtual server to keep the user's device out of harm's way.

Comment

Inspiration

I built this app because I believe that in order to make cybersecurity methods used, we must make them simple and convenient. I wanted to make it as easy as possible for people to check on sites that they were wary about without having to worry about any of their data or personal information is in jeopardy.

What it does

This application takes input from an iOS device in the forum of a URL and sends a request to a remote server. The remote server then scans the site to find out if it is secure (HTTPS), if it redirects multiple times, and scans for multiple phishing words, then returns the data back to the user's device, so that the user can make an informed decision before opening the URL, without having to risk their own security.

How I built it

I first created a python script that would be able to process the HTTP requests to the desired website. Then I created a virtual machine on Google Cloud to host a flask server on. Then I created an iOS application, utilizing the AlamoFire framework to bypass the need for an HTTPS connection.

Challenges I ran into

One of the most difficult challenges was dealing with Apple's strict security policies surrounding HTTPS requests. I plan on implementing HTTPS requests in the future to further secure the process for the user, but as of right now there is no personal data being sent over the connection. I got around Apple's policy by using a framework, which is something I've never done before.

Accomplishments that I'm proud of

My biggest accomplishment is creating a connection between the flask server and the iOS application. I had always had ideas that involved server connectivity, but this project forced me to finally sit down and troubleshoot until I figured it out.

What I learned

I learned a lot of things. This was my first flask web application and my first time using google cloud. Additionally, I now have a much deeper understanding of HTTP methods.

What's next for First Defense

One of my main priorities is to implement HTTPS methods, so I will need to get an SSL Certificate for the flask site. I also want to put more time into the user interface. Additionally, I want to create an algorithm that can find the most common/last phishing keywords to improve the current method and stay up to date against new threats.

Share this project:

Updates