Analysis and Identification of Malicious JavaScript Code
نویسندگان
چکیده
Analysis and Identification of Malicious JavaScript Code Mohammad Fraiwan a , Rami Al-Salman a , Natheer Khasawneh b & Stefan Conrad c a Department of Computer Engineering, Jordan University of Science and Technology, Irbid, Jordan b Department of Software Engineering, Jordan University of Science and Technology, Irbid, Jordan c Institute of Computer Science, Heinrich-Heine University, Düesseldorf, Germany Version of record first published: 15 Feb 2012.
منابع مشابه
JSForce: A Forced Execution Engine for Malicious JavaScript Detection
The drastic increase of JavaScript exploitation attacks has led to a strong interest in developing techniques to enable malicious JavaScript analysis. Existing analysis techniques fall into two general categories: static analysis and dynamic analysis. Static analysis tends to produce inaccurate results (both false positive and false negative) and is vulnerable to a wide series of obfuscation te...
متن کاملMalicious JavaScript detection using machine learning
JavaScript has become a ubiquitous Web technology that enables interactive and dynamic Web sites. The widespread adoption, along with some of its properties allowing authors to easily obfuscate their code, make JavaScript an interesting venue for malware authors. In this survey paper, we discuss some of the difficulties in dealing with malicious JavaScript code, and go through some recent appro...
متن کاملIntelligent Defense against Malicious JavaScript Code
JavaScript is a popular scripting language for creating dynamic and interactive web pages. Unfortunately, JavaScript also provides the ground for web-based attacks that exploit vulnerabilities in web browsers and unnoticeably infect users with malicious software. Regular security tools, such as anti-virus scanners, increasingly fail to fend off this threat, as they are unable to cope with the r...
متن کاملRevolver: An Automated Approach to the Detection of Evasive Web-based Malware
In recent years, attacks targeting web browsers and their plugins have become a prevalent threat. Attackers deploy web pages that contain exploit code, typically written in HTML and JavaScript, and use them to compromise unsuspecting victims. Initially, static techniques, such as signature-based detection, were adequate to identify such attacks. The response from the attackers was to heavily ob...
متن کاملEfficient Prediction of Cross-Site Scripting Web Pages using Extreme Learning Machine
Malicious code is a way of attempting to acquire sensitive information by sending malicious code to the trustworthy entity in an electronic communication. JavaScript is the most frequently used command language in the web page environment. If the hackers misuse the JavaScript code there is a possibility of stealing the authentication and confidential information about an organization and user. ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Information Security Journal: A Global Perspective
دوره 21 شماره
صفحات -
تاریخ انتشار 2012