Analysis and Identification of Malicious JavaScript Code

Fraiwan, Mohammad; Al-Salman, Rami; Khasawneh, Natheer; Conrad, Stefan

doi:10.1080/19393555.2011.624160

Cited by 10 publications

(8 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Keeping in view the impact that an attack can cause on the client side, detection of JavaScript at a real time thus became necessary. Several approaches have been proposed for classification and detection of malicious JavaScript code from the benign code of a website such as those of Rieck et al [5], Curtsinger et al [6], and Fraiwan et al [7], the problem of these approaches is time overhead in detection. Other approaches such as GATEKEEPER [8] and Google Caga [9] use a method of executing random JavaScripts from the code in a protected environment but can detect the limited type of attacks.…”

Section: Introductionmentioning

confidence: 99%

Defending Malicious Script Attacks Using Machine Learning Classifiers

Khan

Abdullah

Khan

2017

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

The web application has become a primary target for cyber criminals by injecting malware especially JavaScript to perform malicious activities for impersonation. Thus, it becomes an imperative to detect such malicious code in real time before any malicious activity is performed. This study proposes an efficient method of detecting previously unknown malicious java scripts using an interceptor at the client side by classifying the key features of the malicious code. Feature subset was obtained by using wrapper method for dimensionality reduction. Supervised machine learning classifiers were used on the dataset for achieving high accuracy. Experimental results show that our method can efficiently classify malicious code from benign code with promising results.

show abstract

Section: Introductionmentioning

confidence: 99%

Defending Malicious Script Attacks Using Machine Learning Classifiers

Khan

Abdullah

Khan

2017

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

show abstract

“…(6) The Background Script displays the result to the user. (7) Extending our approach in order to detect malware written in other programming languages, such as VBScript, Java, C, and C++. Because there is no need for us to manually craft features, the work flow for detecting malicious code written in other languages would be similar with that in our paper.…”

Section: Conclusion and Discussionmentioning

confidence: 99%

“…Many researches concerned about the particular attack types, such as drive-by downloads [2,12] and heap spraying [13], relied on recognizing specific attacks. In addition to these methods, some tools have been developed for analyzing JavaScript code [7][8][9]14]. Although these approaches are effective and reduce the threat of attacks to a certain degree, they can hardly detect the evolving JavaScript attacks and often consume a large amount of time analyzing JavaScript code.…”

Section: Related Workmentioning

confidence: 99%

“…In Equations (1) and (2), we set s to be the sigmoid function as an activation function in both the encoding and decoding processes, and it takes the form s x ð Þ¼ 1 1þe Àx (7) and its first-order derivative is given by…”

Section: Unsupervised Layer-wise Pre-trainingmentioning

confidence: 99%

“…As such, the detection of malicious JavaScript has received the attention of security researchers. Subsequently, several machine learning-based approaches have been put forward that automatically distinguish between malicious and benign activity, such as the detection frameworks in the works of Likarish et al [6] and Fraiwan et al [7] as well as the detectors in the works of Curtsinger et al [8] and Rieck et al [9]. Although the techniques can be applied to JavaScript detection, it requires much time and manpower to manually craft features for both malicious and benign JavaScript code.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A deep learning approach for detecting malicious JavaScript code

Wang

Cai

Wei

2016

Security Comm Networks

138

View full text Add to dashboard Cite

Malicious JavaScript code in webpages on the Internet is an emergent security issue because of its universality and potentially severe impact. Because of its obfuscation and complexities, detecting it has a considerable cost. Over the last few years, several machine learning-based detection approaches have been proposed; most of them use shallow discriminating models with features that are constructed with artificial rules. However, with the advent of the big data era for information transmission, these existing methods already cannot satisfy actual needs. In this paper, we present a new deep learning framework for detection of malicious JavaScript code, from which we obtained the highest detection accuracy compared with the control group. The architecture is composed of a sparse random projection, deep learning model, and logistic regression. Stacked denoising auto-encoders were used to extract high-level features from JavaScript code; logistic regression as a classifier was used to distinguish between malicious and benign JavaScript code. Experimental results indicated that our architecture, with over 27 000 labeled samples, can achieve an accuracy of up to 95%, with a false positive rate less than 4.2% in the best case.

show abstract

MalJs: Lexical, Structural and Behavioral Analysis of Malicious JavaScripts Using Ensemble Classifier

Poornachandran

Nair

et al. 2016

Communications in Computer and Information Science

View full text Add to dashboard Cite

Analysis and Identification of Malicious JavaScript Code

Cited by 10 publications

References 7 publications

Defending Malicious Script Attacks Using Machine Learning Classifiers

Defending Malicious Script Attacks Using Machine Learning Classifiers

A deep learning approach for detecting malicious JavaScript code

MalJs: Lexical, Structural and Behavioral Analysis of Malicious JavaScripts Using Ensemble Classifier

Contact Info

Product

Resources

About