Abstract
Websites on the Internet are becoming increasingly vulnerable to malicious JavaScript code because of its strong impact and dramatic effect. Numerous recent cyberattacks use JavaScript vulnerabilities, and in some cases employ obfuscation to conceal their malice and elude detection. To secure Internet users, an adequate intrusion-detection system (IDS) for malicious JavaScript must be developed. This paper proposes an automatic IDS of obfuscated JavaScript that employs several features and machine-learning techniques that effectively distinguish malicious and benign JavaScript codes. We also present a new set of features, which can detect obfuscation in JavaScript. The features are selected based on identifying obfuscation, a popular method to bypass conventional malware detection systems. The performance of the suggested approach has been tested on JavaScript obfuscation attacks. The studies have shown that IDS based on selected features has a detection rate of 94% for malicious samples and 81% for benign samples within the dimension of the feature vector of 60.
Subject
Computer Networks and Communications
Reference34 articles.
1. Usage Statistics of Client-Side Programming Languages for Websiteshttps://w3techs.com/technologies/overview/client_side_language
2. Information security in M-learning systems: Challenges and threats of using cookies;Korać;Proceedings of the 2020 19th International Symposium INFOTEH—JAHORINA (INFOTEH),2020
3. A novel hybrid intrusion detection method integrating anomaly detection with misuse detection
4. A critical review of intrusion detection systems in the internet of things: techniques, deployment strategy, validation strategy, attacks, public datasets and challenges
5. Using feature selection for intrusion detection system;Alazab;Proceedings of the 2012 International Symposium on Communications and Information Technologies (ISCIT),2012
Cited by
17 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献