%0 Conference Proceedings
%T Hybrid Obfuscated Javascript Strength Analysis System for Detection of Malicious Websites
%+ Anna University
%A Krishnaveni, R.
%A Chellappan, C.
%A Dhanalakshmi, R.
%Z Part 3: Network Security
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 9th International Conference on Network and Parallel Computing (NPC)
%C Gwangju, South Korea
%Y James J. Park
%Y Albert Zomaya
%Y Sang-Soo Yeo
%Y Sartaj Sahni
%I Springer
%3 Network and Parallel Computing
%V LNCS-7513
%P 129-137
%8 2012-09-06
%D 2012
%R 10.1007/978-3-642-35606-3_15
%K Malicious Web Sites
%K JavaScript Obfuscation
%K JavaScript Extraction
%K Hybrid Strength Analysis System
%Z Computer Science [cs]Conference papers
%X JavaScripts are mostly used by the malicious websites to attack the client systems. To detect and prevent this, static and dynamic analysis systems are used which has problems like longer analysis time, setting up of virtual environment and prone to real attacks. Hence a new hybrid analysis system is proposed which reduces the shortcomings of the static and dynamic analysis systems. Additional features such as keywords to words ratio, average line length, presence of suspicious URLs and tags, whitespace percentage, number of redirections, and enigmatic variable names are used to measure the strength of the obfuscation. In this system performance is improved and the number of false positives and negatives are reduced. Based on the strength of obfuscation in the JavaScript code, a website is determined to be benign or malicious.
%G English
%Z TC 10
%Z WG 10.3
%2 https://inria.hal.science/hal-01551330/document
%2 https://inria.hal.science/hal-01551330/file/978-3-642-35606-3_15_Chapter.pdf
%L hal-01551330
%U https://inria.hal.science/hal-01551330
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-AICT
%~ IFIP-TC
%~ IFIP-TC10
%~ IFIP-NPC
%~ IFIP-WG10-3
%~ IFIP-LNCS-7513