QGuard/app.py at main · CodeWhizAnu/QGuard · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
import streamlit as st
import cv2
import numpy as np
import pickle

# --- PAGE CONFIGURATION ---
st.set_page_config(page_title="QGuard", page_icon="🛡️", layout="centered")

# --- CUSTOM CSS ---
st.markdown("""
    <style>
    .stApp { background-color: #0e1117; color: white; }
    div.stButton > button { width: 100%; background-color: #ff4b4b; color: white; }
    div[data-testid="stExpander"] { background-color: #262730; border-radius: 10px; }
    </style>
    """, unsafe_allow_html=True)

# --- LOAD AI MODEL ---
try:
    with open("phishing_model.pkl", "rb") as file:
        model = pickle.load(file)
except FileNotFoundError:
    st.error("❌ Error: 'phishing_model.pkl' not found.")
    st.stop()

# --- HELPER FUNCTIONS ---
def get_features(url):
    url = str(url)
    return [
        len(url), url.count('.'), url.count('@'),
        url.count('-'), 1 if "https" in url else 0,
        sum(c.isdigit() for c in url)
    ]

def check_whitelist(url):
    safe_keywords = ["upi://", "paytm", "phonepe", "gpay", "bhim", "google.com", "amazon"]
    for keyword in safe_keywords:
        if keyword.lower() in url.lower():
            return True
    return False

# --- IMPROVED HYBRID ANALYSIS LOGIC ---
def analyze_url(url):
    if not url:
        return None, None, None

    url_lower = url.lower()

    # STEP 1: VERIFIED PAYMENT (Whitelist)
    payment_keywords = ["upi://", "paytm", "phonepe", "gpay", "bhim"]
    for keyword in payment_keywords:
        if keyword in url_lower:
            return (0, 165, 255), f"✅ **VERIFIED PAYMENT**\n\nLINK: `{url}`", "warning"

    # STEP 2: SAFE WEBSITES (Whitelist)
    safe_domains = ["google.com", "amazon.com", "microsoft.com", "youtube.com", "wikipedia.org"]
    for domain in safe_domains:
        if domain in url_lower:
             return (0, 255, 0), f"✅ **SAFE WEBSITE**\n\nLINK: `{url}`", "success"

    # STEP 3: INSTANT DANGER TRAP (Blacklist) -> THE NEW FIX
    # If the URL contains these obvious phishing phrases, mark it DANGER immediately.
    danger_patterns = [
        "verify-account", "update-password", "secure-login",
        "confirm-id", "paypal-manager", "bank-update", "account-suspended"
    ]
    for pattern in danger_patterns:
        if pattern in url_lower:
             return (0, 0, 255), f"🚨 **DANGER: PHISHING PATTERN DETECTED!**\n\nLINK: `{url}`", "error"

    # STEP 4: AI BRAIN (For everything else)
    features = np.array([get_features(url)])
    prediction = model.predict(features)[0]

    if prediction == 1:
        return (0, 0, 255), f"🚨 **DANGER: MALICIOUS LINK DETECTED!**\n\nLINK: `{url}`", "error"
    else:
        return (0, 255, 0), f"✅ **SAFE WEBSITE**\n\nLINK: `{url}`", "success"

# --- UI HEADER ---
header_col1, header_col2 = st.columns([1, 5])
with header_col1:
    try:
        st.image("QG.png", width=90)
    except:
        st.write("🛡️")
with header_col2:
    st.title("QGuard")
    st.caption("AI-Powered Phishing Defense System By Anushka Deshmukh")

# --- TABS FOR NAVIGATION ---
tab1, tab2 = st.tabs(["📸 Live Scanner", "✍️ Manual Link Checker"])

# === TAB 1: CAMERA SCANNER ===
with tab1:
    col1, col2 = st.columns([3, 1])
    with col1:
        run = st.checkbox('🔴 Start Camera', value=False)
    with col2:
        st.write(" **Status:** Ready")

    stframe = st.empty()
    result_area_camera = st.empty()

    if run:
        cap = cv2.VideoCapture(0)
        detector = cv2.QRCodeDetector()

        while run:
            _, frame = cap.read()
            if frame is None:
                st.warning("Camera not accessible!")
                break

            frame = cv2.flip(frame, 1)
            data, bbox, _ = detector.detectAndDecode(frame)

            if bbox is not None and data:
                # Reuse the analysis logic
                color_bgr, msg, status_type = analyze_url(data)

                # Draw Box
                points = bbox.astype(int)
                for i in range(len(points[0])):
                    cv2.line(frame, tuple(points[0][i]), tuple(points[0][(i+1) % 4]), color_bgr, 5)

                # Show Result below video
                if status_type == "error":
                    result_area_camera.error(msg)
                elif status_type == "warning":
                    result_area_camera.warning(msg)
                else:
                    result_area_camera.success(msg)

            frame_rgb = cv2.cvtColor(frame, cv2.COLOR_BGR2RGB)
            stframe.image(frame_rgb, channels="RGB", use_container_width=True)

        cap.release()
    else:
        result_area_camera.info("👈 Click 'Start Camera' to begin scanning.")

# === TAB 2: MANUAL CHECKER ===
with tab2:
    st.subheader("Check a suspicious link manually")
    user_input = st.text_input("Paste URL here:", placeholder="Example: http://secure-login.paypal-manager.com")

    if st.button("Analyze Link 🔍"):
        if user_input:
            # Reuse the EXACT SAME AI BRAIN
            _, msg, status_type = analyze_url(user_input)

            if status_type == "error":
                st.error(msg)
            elif status_type == "warning":
                st.warning(msg)
            else:
                st.success(msg)
        else:
            st.info("Please enter a URL first.")