A survey on current malicious javascript behavior of infected web content in detection of malicious web pages

Wan Nurulsafawati, Wan Manan and Mohd Nizam, Mohmad Kahar and Noorlin, Mohd Ali (2020) A survey on current malicious javascript behavior of infected web content in detection of malicious web pages. In: IOP Conference Series: Materials Science and Engineering, 6th International Conference on Software Engineering and Computer Systems, ICSECS 2019 , 25 - 27 September 2019 , Vistana Hotel, Kuantan. pp. 1-9., 769 (1). ISSN 1757-8981 (Print), 1757-899X (Online)

[img]
Preview
Pdf (Open access)
A survey on current malicious javascript behavior of infected.pdf
Available under License Creative Commons Attribution.

Download (909kB) | Preview

Abstract

In recent years, the advance growth of cybercrime has become an urgent issue to the security authorities. With the improvement of web technologies enable attackers to launch the web-based attacks and other malicious code easily without having prior expert knowledge. Recently, JavaScript has become the most common attack construction language as it is the primary browser scripting language which allow developer to develop sophisticated client-side interfaces for web application. This lead to the growth of malicious websites and as main platform for distributing malware or malicious script to the user's computer when the user access to these webpages. Initial act and detection on such threats early in a timely manner is vital in order to reduce the damages which have caused billions of dollars lost every year. A number of approaches have been proposed to detect malicious web pages. However, the efficient detection of malicious web pages previously has generated many false alarm by the use of sophisticated obfuscation techniques in benign JavaScript code in web pages. Therefore, in this paper, a thoroughly survey and detailed understanding of malicious JavaScript code features will be provided, which have been collected from the web content. We conduct a thorough analysis and studies on the usage of different JavaScript features and JavaScript detection technique systematically and present the most important features of malicious threats in web pages. Then the analysis will be presented along with different dimensions (features representation, detection techniques analysis, and sample of malicious script).

Item Type: Conference or Workshop Item (Lecture)
Additional Information: Indexed by Scopus
Uncontrolled Keywords: Cybercrime; Malicious websites; JavaScript; Internet technology
Subjects: Q Science > QA Mathematics > QA76 Computer software
T Technology > TK Electrical engineering. Electronics Nuclear engineering
Faculty/Division: Faculty of Computing
Depositing User: Mrs Norsaini Abdul Samat
Date Deposited: 17 Nov 2022 07:58
Last Modified: 17 Nov 2022 07:58
URI: http://umpir.ump.edu.my/id/eprint/28809
Download Statistic: View Download Statistics

Actions (login required)

View Item View Item