Phish detect pro: A Servlet-Based Smart Wallet Simulation And Approval Phishing Detection Framework Using Intent Validation

Abstract

This paper presents PhishDetectPro, a servlet-based smart wallet simulation and approval phishing detection framework using intent validation. Approval phishing represents one of the most deceptive forms of blockchain fraud, wherein users are manipulated into granting unlimited token access to malicious smart contracts without their conscious awareness. The proposed framework employs a Smart Intent Validation and Risk Detection (SIVRD) algorithm that performs pre-execution analysis of wallet approval transactions, evaluating parameters such as spender identity, approval amount, interaction history, and behavioral patterns to compute a real-time risk score. The system simulates the complete lifecycle of an approval phishing attack through four integrated modules: Smart Wallet Simulation, Approval Phishing Detection, Token Drain Simulation, and Blockchain Ledger & Block Creation. Built on Java EE (Servlet-JSP), Apache Tomcat, and MySQL, the framework provides a controlled, educational, and research-ready environment to study, demonstrate, and mitigate approval-based blockchain scams. Experimental results demonstrate effective detection of malicious approval patterns with clear user-facing alerts, blockchain-backed transaction traceability, and transparent visual analytics via a JSP dashboard. The paper also presents a comparative literature analysis and recommends enhanced smart wallet security controls inspired by EIP-4337 account abstraction.