Title :
A static approach to detect drive-by-download attacks on webpages
Author :
Priya, Mohan ; Sandhya, L. ; Thomas, Cedric
Author_Institution :
S.C.T. Coll. of Eng., Trivandrum, India
Abstract :
Today, Internet has become another life to most of us. Other than a basic communication network, Internet has developed to be an interconnected information source, enabling different forms of social interactions and marketing. Cyber criminals use computer as a weapon to enrich themselves by taking undue advantage of legitimate sites. A serious threat in Web browsing is that the attackers use drive-by-download exploits by embedding malicious codes into web pages. When user with vulnerable browser visits this page, browser gets compromised. Here a static method is discussed to extract useful information from Web page and analyses it for the presence of malicious content. Based on the features extracted from the HTML contents of a Web page, different classifiers are implemented and tested in MATLAB and their detection accuracies are compared. Classifying algorithms of WEKA are also used for the study and their performance is compared.
Keywords :
Web sites; hypermedia markup languages; invasive software; online front-ends; pattern classification; Cyber criminals; HTML contents; Matlab; WEKA classification algorithms; Web browsing threat; Web pages; drive-by-download attack detection; feature extraction; interconnected information source; legitimate sites; malicious codes; malicious content; static approach; Browsers; Feature extraction; HTML; MATLAB; Malware; Support vector machines; Web pages; Benign; Botnet; Classifier; Drive-by-download; malware;
Conference_Titel :
Control Communication and Computing (ICCC), 2013 International Conference on
Conference_Location :
Thiruvananthapuram
Print_ISBN :
978-1-4799-0573-7
DOI :
10.1109/ICCC.2013.6731668
