JSPRE: A Large-Scale Detection of Malicious JavaScript Code Based on Pre-filter
作者: Bingnan Hou , Jiaping Yu , Bixin Liu , Zhiping Cai
DOI: 10.1007/978-3-030-00021-9_52
关键词: JavaScript 、 Static analysis 、 The Internet 、 Computer science 、 Internet security 、 Web page 、 World Wide Web 、 Web crawler 、 Crawling
摘要: Malicious web pages that use drive-by-download attacks or social engineering technique have become a popular means for compromising hosts on the Internet. To search malicious pages, researchers developed number of systems analyze presence code. Most these dynamic analysis. That is, tools are quite precise, analysis process is costly. Therefore, performing this large-scale can be prohibitive. In paper, we present JSPRE, an approach to more efficiently likely malicious. JSPRE proposes page collection algorithm based guided crawling, which starts from initial URLs know pages. meanwhile, uses static techniques quickly examine content. We implemented our approach, and evaluated it dataset. The results show able identify when compared crawler-based approaches.
springer.com
sci-hub.st 参考文章(24)
Jose Nazario, PhoneyC: a virtual client honeypot usenix conference on large scale exploits and emergent threats. pp. 6- 6 ,(2009)
Charlie Curtsinger, Benjamin Livshits, Benjamin Zorn, Christian Seifert, ZOZZLE: fast and precise in-browser JavaScript malware detection usenix security symposium. pp. 3- 3 ,(2011)
Abhishek Bichhawat, Vineet Rajani, Deepak Garg, Christian Hammer, Information Flow Control in WebKit’s JavaScript Bytecode principles of security and trust. pp. 159- 178 ,(2014) , 10.1007/978-3-642-54792-8_9
YoungHan Choi, TaeGhyoon Kim, SeokJin Choi, CheolWon Lee, Automatic Detection for JavaScript Obfuscation Attacks in Web Pages through String Pattern Analysis international conference on future generation information technology. ,vol. 5899, pp. 160- 172 ,(2009) , 10.1007/978-3-642-10509-8_19
Johnny Long, Justin Brown, Bill Gardner, Google Hacking for Penetration Testers ,(2004)
Peter Komisarczuk, Ian Welch, Christian Seifert, HoneyC - The low-interaction client honeypot University of Wellington. ,(2006)
Alfred Huger, Adam J. O'Donnell, Oliver Friedrichs, Method and apparatus for detecting malicious software using machine learning techniques ,(2011)
Rajeev Motwani, Terry Winograd, Lawrence Page, Sergey Brin, The PageRank Citation Ranking : Bringing Order to the Web the web conference. ,vol. 98, pp. 161- 172 ,(1999)
Simon Holm Jensen, Magnus Madsen, Anders Møller, Modeling the HTML DOM and browser API in static analysis of JavaScript web applications foundations of software engineering. pp. 59- 69 ,(2011) , 10.1145/2025113.2025125
Konrad Rieck, Tammo Krueger, Andreas Dewald, Cujo: efficient detection and prevention of drive-by-download attacks annual computer security applications conference. pp. 31- 39 ,(2010) , 10.1145/1920261.1920267