首页    期刊浏览 2024年12月12日 星期四
登录注册

文章基本信息

  • 标题:Malicious JavaScript Detection
  • 本地全文:下载
  • 作者:Ishan Chauhan ; Nirali Modi ; Kaushal Bhavsar
  • 期刊名称:International Journal of Advanced Research In Computer Science and Software Engineering
  • 印刷版ISSN:2277-6451
  • 电子版ISSN:2277-128X
  • 出版年度:2013
  • 卷号:3
  • 期号:3
  • 出版社:S.S. Mishra
  • 摘要:JavaScript helps to both web pages to look attractive and to Developers to reduce Server side functionality. JavaScript runs on the web browser, interacts with web browser's window. JavaScript helps Attacker's to hide their code. This code can be Malicious. Various normal defined methods can be used by an attacker to hide the code. Obfuscation techniques are also used to obfuscate the malicious code. Due to the malicious code, JavaScript becomes malicious and causes harm to the webpage. To decode Malicious JavaScript has approach to scan scripts in the web page, in that script, check word by word and character by character to know meaning of the code. This technique can be analysed by two ways. First approach is to analyse script manually and second the analysis of the script by an automated approach. First, Manual Analysis of the script contains scanning of the script by both human eye and human understanding. Once this approach has been understood, second approach is reviewed. In Seco nd approach, analysis of the script is done with the help of the programs. Programs searches for the script in web page automatically, result of that program passed to another program which scans the words and character to understand the meaning of the script. With the help of this scanning, maliciousness of script can be detected. In addition to these approaches, Script would be run in safer environment to know how it can harm to web page if needed
  • 关键词:JavaScript; Security; Hybrid detection; Manual Approach; Automated Approach
国家哲学社会科学文献中心版权所有