Abstract

In recent years, JavaScript-based attacks have become one of the most common and successful types of attack. Existing techniques for detecting malicious JavaScripts could fail for dierent reasons. Some techniques are tailored on specific kinds of attacks, and are ineective for others. Some other techniques require costly computational resources to be implemented. Other techniques could be circumvented with evasion methods. This paper proposes a method for detecting malicious JavaScript code based on five features that capture dierent characteristics of a script: execution time, external referenced domains and calls to JavaScript functions. Mixing dierent types of features could result in a more eective detection technique, and overcome the limitations of existing tools created for identifying malicious JavaScript. The experimentation carried out suggests that a combination of these features is able to successfully detect malicious JavaScript code (in the best cases we obtained a precision of 0.979 and a recall of 0.978).

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Research on Malicious JavaScript Detection Technology Based on LSTM
Yong Fang ... Cheng Huang
IEEE Access | VOL. 6
Yong Fang, et. al.Yong Fang ... Cheng Huang
01 Jan 2018
Detection of Malicious JavaScript Code in Web Pages
Dharmaraj R Patil ... J B Patil
Indian Journal of Science and Technology | VOL. 10
Dharmaraj R Patil, et. al.Dharmaraj R Patil ... J B Patil
19 May 2017
MOJI: Character-level convolutional neural networks for Malicious Obfuscated JavaScript Inspection
Minato Ishida ... Kazuhiko Sumi
Applied Soft Computing | VOL. 137
Minato Ishida, et. al.Minato Ishida ... Kazuhiko Sumi
21 Feb 2023
Malicious Javascript Detection based on Clustering Techniques
Nguyen Hong Son ... Ha Thanh Dung
International Journal of Network Security & Its Applications | VOL. 13
Nguyen Hong Son, et. al.Nguyen Hong Son ... Ha Thanh Dung
30 Nov 2021
View more papers

More From: e-Informatica Software Engineering Journal

Paper Title
Journal
Date
Author
Boosting and Comparing Performance of Machine Learning Classifiers with Meta-heuristic Techniques to Detect Code Smell
Shivani Jain ... Anju Saha
e-Informatica Software Engineering Journal | VOL. 18
Shivani Jain, et. al.Shivani Jain ... Anju Saha
01 Jan 2024
Measuring End-user Developers’ Episodic Experience of a Low-code Development Platform. A Preliminary Study
Dongmei Gao ... Fabian Fagerholm
e-Informatica Software Engineering Journal | VOL. 18
Dongmei Gao, et. al. Dongmei Gao ... Fabian Fagerholm
01 Jan 2024
Software Defect Prediction Using Non-Dominated Sorting Genetic Algorithm and $k$-Nearest Neighbour Classifier
Mohammad Azzeh ... Hajra Iqbal
e-Informatica Software Engineering Journal | VOL. 18
Mohammad Azzeh, et. al.Mohammad Azzeh ... Hajra Iqbal
01 Jan 2024
A Multivocal Literature Review on Non-Technical Debt in Software Development: {A}n Insight into Process, Social, People, Organizational, and Culture Debt
Hina Saeeda ... Tomas Gustavsson
e-Informatica Software Engineering Journal | VOL. 18
Hina Saeeda, et. al.Hina Saeeda ... Tomas Gustavsson
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.