Identification of Malicious Web Pages with Static Heuristics

被引：26

作者：

Seifert, Christian ^{[1
]}

Welch, Ian ^{[1
]}

Komisarczuk, Peter ^{[1
]}

机构：

[1] Victoria Univ Wellington, Wellington 6140, New Zealand

来源：

ATNAC: 2008 AUSTRALASIAN TELECOMMUNICATION NETWOKS AND APPLICATIONS CONFERENCE | 2008年

关键词：

Security; Client Honeypots; Drive-by-downloads; Intrusion Detection;

D O I：

10.1109/ATNAC.2008.4783302

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Malicious web pages that launch client-side attacks on web browsers have become an increasing problem in recent years. High-interaction client honeypots are security devices that can detect these malicious web pages on a network. However, high-interaction client honeypots are both resource-intensive and known to miss attacks. This paper presents a novel classification method for detecting malicious web pages that involves inspecting the underlying static attributes of the initial HTTP response and HTML code. Because malicious web pages import exploits from remote resources and hide exploit code, static attributes characterizing these actions can be used to identify a majority of malicious web pages. Combining high-interaction client honeypots and this new classification method into a hybrid system leads to significant performance improvements.

引用

页码：91 / 96

页数：6

共 50 条

[1] Identification of Malicious Web Pages by Inductive Learning
Liu, Peishun
Wang, Xuefang
[J]. WEB INFORMATION SYSTEMS AND MINING, PROCEEDINGS, 2009, 5854 : 448 - +
[2] Identification of Malicious Web Pages Through Analysis of Underlying DNS and Web Server Relationships
Seifert, Christian
Welch, Ian
Komisarczuk, Peter
Aval, Chiraag Uday
Endicott-Popovsky, Barbara
[J]. 2008 IEEE 33RD CONFERENCE ON LOCAL COMPUTER NETWORKS, VOLS 1 AND 2, 2008, : 910 - +
[3] An ensemble algorithm for discovery of malicious web pages
Sajedi, Hedieh
[J]. International Journal of Information and Computer Security, 2019, 11 (03): : 203 - 213
[4] Detection of malicious web pages based on hybrid analysis
Wang, Rong
Zhu, Yan
Tan, Jiefan
Zhou, Binbin
[J]. JOURNAL OF INFORMATION SECURITY AND APPLICATIONS, 2017, 35 : 68 - 74
[5] SPIDERNET: AN INTERACTION TOOL FOR PREDICTING MALICIOUS WEB PAGES
Krishnaveni, S.
Sathiyakumari, K.
[J]. 2014 INTERNATIONAL CONFERENCE ON INFORMATION COMMUNICATION AND EMBEDDED SYSTEMS (ICICES), 2014,
[6] EVILSEED: A Guided Approach to Finding Malicious Web Pages
Invernizzi, Luca
Comparetti, Paolo Milani
Benvenuti, Stefano
Kruegel, Christopher
Cova, Marco
Vigna, Giovanni
[J]. 2012 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP), 2012, : 428 - 442
[7] Effective Analysis, Characterization, and Detection of Malicious Web Pages
Eshete, Birhanu
[J]. PROCEEDINGS OF THE 22ND INTERNATIONAL CONFERENCE ON WORLD WIDE WEB (WWW'13 COMPANION), 2013, : 355 - 359
[8] On the influence of layout heuristics on the aesthetic perception of web pages
Müller, Kerstin
Schrepp, Martin
[J]. i-com, 2014, 13 (02) : 38 - 46
[9] Detection of Malicious Web Pages Using System Calls Sequences
Canfora, Gerardo
Medvet, Eric
Mercaldo, Francesco
Visaggio, Corrado Aaron
[J]. AVAILABILITY, RELIABILITY, AND SECURITY IN INFORMATION SYSTEMS, 2014, 8708 : 226 - +
[10] UAC: A Lightweight and Scalable Approach to Detect Malicious Web Pages
Kaur, Harneet
Madan, Sanjay
Sehgal, Rakesh Kumar
[J]. MODERN TRENDS AND TECHNIQUES IN COMPUTER SCIENCE (CSOC 2014), 2014, 285 : 241 - 261

← 1 2 3 4 5 →