Detecting Malicious Scripts in Web Contents through Remote Code Verification

Choi, Jae Yeong; Kim, Sung Ki; Lee, Hyuk Jun; Min, Byoung Joon

doi:10.3745/kipstc.2012.19c.1.047

Cited by 2 publications

(3 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A URL, also known as a "web address," serves as a distinct identifier for locating resources on This procedure helps to examine the structure of the webpage and looks for any suspicious code [10].…”

Section: Content Featurementioning

confidence: 99%

A Review on Malicious URLs Detection Using Machine Learning Methods

Tabassum,

Alam,

Ejaz

et al. 2023

JERR

View full text Add to dashboard Cite

Malicious URLs are a serious threat to cybersecurity because they can compromise user security and inflict large financial losses. The extensiveness and adaptability of traditional detection approaches which rely on blacklists are limited when it comes to rapidly emerging threats. In response, machine learning methods have become more popular as a means of improving the detection efficiency of malicious URLs. This paper provides a thorough analysis providing a structured understanding of all aspects and formal formulation of the machine learning job of malicious URL detection. It covers feature representation and algorithm design, classifying and reviewing contributions from literature studies. The survey aims to provide a state-of-the-art understanding and support future research and practical implementations. It targets a diverse audience, including experts, cybersecurity professionals and machine learning researchers. The article provides a comprehensive overview of the field discussing practical system design considerations, ongoing research challenges and future research directions.

show abstract

Section: Content Featurementioning

confidence: 99%

A Review on Malicious URLs Detection Using Machine Learning Methods

Tabassum,

Alam,

Ejaz

et al. 2023

JERR

View full text Add to dashboard Cite

show abstract

“…These domains are used for phishing [2][3][4][5][6] (e.g., spear phishing), Command and Control (C&C) [7] and a vast set of virus and malware [8] attacks. Therefore, the ability to identify a malicious domain in advance is a massive game-changer [9][10][11][12][13][14][15][16][17][18][19][20][21][22][23][24][25][26]. A common way of identifying malicious/compromised domains is to collect information about the domain names (alphanumeric characters) and network information (such as DNS and passive DNS data).…”

Section: Introductionmentioning

confidence: 99%

“…A common way of identifying malicious/compromised domains is to collect information about the domain names (alphanumeric characters) and network information (such as DNS and passive DNS data). This information is then used to extract a set of features, according to which machine learning (ML) algorithms are trained based on a massive amount of data [11][12][13][14][15][17][18][19][20][21][22]24,[26][27][28]. A mathematical approach can also be used in various ways [16,26], such as measuring the distance between a known malicious domain name and the analyzed domain (benign or malicious) [26].…”

Section: Introductionmentioning

confidence: 99%

Less Is More: Robust and Novel Features for Malicious Domain Detection

2022

View full text Add to dashboard Cite

Malicious domains are increasingly common and pose a severe cybersecurity threat. Specifically, many types of current cyber attacks use URLs for attack communications (e.g., C&C, phishing, and spear-phishing). Despite the continuous progress in detecting cyber attacks, there are still critical weak spots in the structure of defense mechanisms. Since machine learning has become one of the most prominent malware detection methods, a robust feature selection mechanism is proposed that results in malicious domain detection models that are resistant to evasion attacks. This mechanism exhibits a high performance based on empirical data. This paper makes two main contributions: First, it provides an analysis of robust feature selection based on widely used features in the literature. Note that even though the feature set dimensional space is cut by half, the performance of the classifier is still improved (an increase in the model’s F1-score from 92.92% to 95.81%). Second, it introduces novel features that are robust with regard to the adversary’s manipulation. Based on an extensive evaluation of the different feature sets and commonly used classification models, this paper shows that models based on robust features are resistant to malicious perturbations and concurrently are helpful in classifying non-manipulated data.

show abstract

Detecting Malicious Scripts in Web Contents through Remote Code Verification

Cited by 2 publications

References 6 publications

A Review on Malicious URLs Detection Using Machine Learning Methods

A Review on Malicious URLs Detection Using Machine Learning Methods

Less Is More: Robust and Novel Features for Malicious Domain Detection

Contact Info

Product

Resources

About