• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>Telecommunication Networks and Applications Conference (ATNAC), 2008 Australasian >Identification of Malicious Web Pages with Static Heuristics
【24h】

Identification of Malicious Web Pages with Static Heuristics

机译:使用静态启发式方法识别恶意网页

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Malicious web pages that launch client-side attacks on web browsers have become an increasing problem in recent years. High- interaction client honeypots are security devices that can detect these malicious web pages on a network. However, high-interaction client honeypots are both resource-intensive and known to miss attacks. This paper presents a novel classification method for detecting malicious web pages that involves inspecting the underlying static attributes of the initial HTTP response and HTML code. Because malicious web pages import exploits from remote resources and hide exploit code, static attributes characterizing these actions can be used to identify a majority of malicious web pages. Combining high-interaction client honeypots and this new classification method into a hybrid system leads to significant performance improvements.
机译:近年来,在Web浏览器上发起客户端攻击的恶意网页已成为一个日益严重的问题。高交互性客户端蜜罐是可以检测网络上这些恶意网页的安全设备。但是,高交互性客户端蜜罐既耗费资源,又会丢失攻击。本文提出了一种用于检测恶意网页的新颖分类方法,该方法涉及检查初始HTTP响应和HTML代码的基础静态属性。由于恶意网页从远程资源导入漏洞并隐藏漏洞代码,因此表征这些操作的静态属性可用于识别大多数恶意网页。将高交互性客户端蜜罐和这种新的分类方法结合到一个混合系统中,可以显着提高性能。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号