Hybrid Obfuscated Javascript Strength Analysis System for Detection of Malicious Websites

Abstract : JavaScripts are mostly used by the malicious websites to attack the client systems. To detect and prevent this, static and dynamic analysis systems are used which has problems like longer analysis time, setting up of virtual environment and prone to real attacks. Hence a new hybrid analysis system is proposed which reduces the shortcomings of the static and dynamic analysis systems. Additional features such as keywords to words ratio, average line length, presence of suspicious URLs and tags, whitespace percentage, number of redirections, and enigmatic variable names are used to measure the strength of the obfuscation. In this system performance is improved and the number of false positives and negatives are reduced. Based on the strength of obfuscation in the JavaScript code, a website is determined to be benign or malicious.
Document type :
Conference papers
Complete list of metadatas

Cited literature [7 references]  Display  Hide  Download

https://hal.inria.fr/hal-01551330
Contributor : Hal Ifip <>
Submitted on : Friday, June 30, 2017 - 10:35:45 AM
Last modification on : Tuesday, April 17, 2018 - 11:52:04 AM
Long-term archiving on : Monday, January 22, 2018 - 9:12:54 PM

File

978-3-642-35606-3_15_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

R. Krishnaveni, C. Chellappan, R. Dhanalakshmi. Hybrid Obfuscated Javascript Strength Analysis System for Detection of Malicious Websites. 9th International Conference on Network and Parallel Computing (NPC), Sep 2012, Gwangju, South Korea. pp.129-137, ⟨10.1007/978-3-642-35606-3_15⟩. ⟨hal-01551330⟩

Share

Metrics

Record views

65

Files downloads

131