WSProxy: Detecting and Fighting Malicious Websites

2011 International Conference on Business Computing and Global Informatization Pub Date : 2011-07-29 DOI:10.1109/BCGIN.2011.182

Feng Kai, Sun Jianhua, Chen Hao

引用次数: 0

Abstract

In this paper we present WS Proxy, an analysis system for malicious websites that focuses on detecting attacks through behavior of web programs. The system uses Web kit which is an open script engine to execute page scripts. We detect malicious codes from web pages using static analysis and dynamic analysis technology. In contrast to previous work, this approach combines generality with usability, since the system is executed directly in the web browser before the web page is displayed. We show that we can achieve false positive rates below 5% and false negative rates below 10% with a performance overhead of only a few seconds, which affords a great potential for future versions of our tool.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

WSProxy:检测和打击恶意网站

在本文中，我们提出了WS代理，一个恶意网站的分析系统，重点是通过web程序的行为来检测攻击。该系统使用Web kit，它是一个开放的脚本引擎来执行页面脚本。我们使用静态分析和动态分析技术从网页中检测恶意代码。与以前的工作相比，这种方法结合了通用性和可用性，因为系统在网页显示之前直接在web浏览器中执行。我们表明，我们可以实现低于5%的误报率和低于10%的误报率，而性能开销仅为几秒钟，这为我们工具的未来版本提供了巨大的潜力。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2011 International Conference on Business Computing and Global Informatization

自引率

0.00%

发文量

期刊最新文献

Hybrid Bisect K-Means Clustering Algorithm A Labeling Algorithm for the Earliest and Latest Time-Varying Maximum Flow Problems The Research on Motive Force of Urban Development Based on Informationization The Eddy Currents Calculation Based on the Least Square Algorithm for EAST A Passive Locating Algorithm for Motive Target Based on Modified Particle Filter Method