Title :
Webshell detection techniques in web applications
Author :
Truong Dinh Tu ; Cheng Guang ; Guo Xiaojun ; Pan Wubin
Author_Institution :
Sch. of Comput. Sci. & Eng., Southeast Univ., Nanjing, China
Abstract :
With widely adoption of online services, malicious web sites have become a malignant tumor of the Internet. Through system vulnerabilities, attackers can upload malicious files (which are also called webshells) to web server to create a backdoor for hackers´ further attacks. Therefore, finding and detecting webshell inside web application source code are crucial to secure websites. In this paper, we propose a novel method based on the optimal threshold values to identify files that contain malicious codes from web applications. Our detection system will scan and look for malicious codes inside each file of the web application, and automatically give a list of suspicious files and a detail log analysis table of each suspicious file for administrators to check further. The Experimental results show that our approach is applicable to identify webshell more efficient than some other approaches.
Keywords :
Internet; Web sites; security of data; Internet; Web applications; Web sites security; Webshell detection technique; malicious Web sites; Computer hacking; Cryptography; Databases; Educational institutions; Web pages; Web servers; backdoor; malicious web detection; webshell; webshell detection;
Conference_Titel :
Computing, Communication and Networking Technologies (ICCCNT), 2014 International Conference on
Conference_Location :
Hefei
Print_ISBN :
978-1-4799-2695-4
DOI :
10.1109/ICCCNT.2014.6963152
