Mitch: A Machine Learning Approach to the Black-Box Detection of CSRF Vulnerabilities

Calzavara, Stefano; Conti, Mauro; Focardi, Riccardo; Rabitti, Alvise; Tolomei, Gabriele

doi:10.1109/eurosp.2019.00045

Cited by 29 publications

(26 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Like Code2vec, this prototype tried to predict method name by using an attention layer mechanism. Mitch (Calzavara et al, 2019) uses a browser extension HTTP-Tracker to manually label HTTP requests sent from web applications as sensitive or insensitive HTTP requests to detect CSRF attacks. The HTTP requests database was created by selecting Alexa ranking websites featuring authenticated access.…”

Section: Related Workmentioning

confidence: 99%

“…In order to prove this thesis, we compare and tweak for the XSS detection problem two different code representation techniques, based on natural language processing (Allamanis et al, 2016) (NLP) and programming language processing (Allamanis et al, 2018;Alon et al, 2019) (PLP), respectively, and use deep learning 6 for the detection of XSS vulnerabilities in code written in two mainstream web serverside languages: PHP 7 and Node.js 8 . Machine learning techniques have been previously applied to the detection of security vulnerabilities (e.g., (Li et al, 2018;Staicu et al, 2018;Calzavara et al, 2019;She et al, 2020)). .…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Statically identifying XSS using deep learning

Maurel

Vidal

Rezk

2022

Science of Computer Programming

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Statically identifying XSS using deep learning

Maurel

Vidal

Rezk

2022

Science of Computer Programming

View full text Add to dashboard Cite

“…44 Cross-Site-Request Forgery CSRF When the attacker sends an unauthenticated HTTP request to a user's browser intending to send information (such as the user's session cookie and other relevant information) to a web application. 60…”

Section: Vulnerability Descriptionmentioning

confidence: 99%

An empirical comparison of commercial and open‐source web vulnerability scanners

et al. 2020

View full text Add to dashboard Cite

Web vulnerability scanners (WVSs) are tools that can detect security vulnerabilities in web services. Although both commercial and open-source WVSs exist, their vulnerability detection capability and performance vary. In this paper, we report on a comparative study to determine the vulnerability detection capabilities of eight WVSs (both open and commercial) using two vulnerable web applications: WebGoat and Damn vulnerable web application (DVWA). The eight WVSs studied were: Acunetix; HP WebInspect; IBM AppScan; OWASP ZAP; S ; Arachni; Vega; and Iron WASP. The performance was evaluated using multiple evaluation metrics: precision; recall; Youden index; OWASP web benchmark evaluation (WBE); and the web application security scanner evaluation criteria (WASSEC). The experimental results show that, while the commercial scanners are effective in detecting security vulnerabilities, some open-source scanners (such as ZAP and Skipfish) can also be effective. In summary, this study recommends improving the vulnerability detection capabilities of both the open-source and commercial scanners to enhance code coverage and the detection rate, and to reduce the number of false-positives.

show abstract

“…For example, CSRF is found in only 5% of applications, as reported in the 2017 OWASP Top 10, because most frameworks include CSRF defences [29]. Accordingly, Calzavara et al presented Mitch [30], the first ML-based tool for the black-box detection of CSRF, which allows the identification of 35 new CSRF vulnerabilities on 20 websites from the Alexa Top 10,000 websites and three previously undetected CSRF vulnerabilities on production software already analyzed with the state-of-the-art tool Deemon [31]. Mitch is a binary classifier, labelling sensitive or insensitive requests using a random forest algorithm on a 49-dimensional feature space.…”

Section: Using ML In Cyberattacksmentioning

confidence: 99%

“…This section describes how an automated cyberattack can be carried out using ML. We considered two scenarios for the weaponization and delivery stages: First, in the case of humanless intrusion, attackers can use a similar tool but utilize information provided by Shodan [62] or Mitch [30] instead of features obtained using a computer vision. Second, attackers can use social engineering, using tools for profiling and for spear-phishing described in the previous section [34,35] and creating click-bytes links to infect the victim [35,36].…”

Section: Fully Ml-powered Cyberattackmentioning

confidence: 99%

Machine Learning Use Cases in Cybersecurity

Avdoshin¹,

Lazarenko²,

Chichileva³

et al. 2019

Proceedings of ISP RAS

View full text Add to dashboard Cite

The problem regarding the use of machine learning in cybersecurity is difficult to solve because the advances in the field offer many opportunities that it is challenging to find exceptional and beneficial use cases for implementation and decision making. Moreover, such technologies can be used by intruders to attack computer systems. The goal of this paper to explore machine learning usage in cybersecurity and cyberattack and provide a model of machine learning-powered attack.

show abstract

Mitch: A Machine Learning Approach to the Black-Box Detection of CSRF Vulnerabilities

Cited by 29 publications

References 33 publications

Statically identifying XSS using deep learning

Statically identifying XSS using deep learning

An empirical comparison of commercial and open‐source web vulnerability scanners

Machine Learning Use Cases in Cybersecurity

Contact Info

Product

Resources

About