VNU-UET Repository

GuruWS: A Hybrid Platform for Detecting Malicious Web Shells and Web Application Vulnerabilities

Le, Van Giap and Nguyen, Huu Tung and Pham, Duy Phuc and Nguyen, Ngoc Hoa (2018) GuruWS: A Hybrid Platform for Detecting Malicious Web Shells and Web Application Vulnerabilities. Transactions on Computational Collective Intelligence, 11370 (XXXII). pp. 182-208. ISSN 2190-9288

This is the latest version of this item.

Full text not available from this repository.

Abstract

Web application/service is now omnipresent but its security risks, such as malware and vulnerabilities, are indeed underestimated. In this paper, we propose a protective, extensible and hybrid platform, named GuruWS, for automatically detecting both web application vulnerabilities and malicious web shells. Based on the original PHP vulnerability scanner THAPS, we propose E-THAPS which implements a novel detection mechanism, an improved SQL injection, Cross-site Scripting and vulnerability detection capabilities. For malicious web shell detection, taint analysis and pattern matching methods are chosen to be implemented in GuruWS. A number of extensive experiments are carried out to prove the outstanding performance of our proposed platform in comparison with several existing solutions in detecting either web application vulnerabilities or malicious web shells.

Item Type: Article
Subjects: Information Technology (IT)
Scopus-indexed journals
ISI-indexed journals
Divisions: Faculty of Information Technology (FIT)
Depositing User: Assoc.Prof Hoá NGUYỄN Ngọc
Date Deposited: 25 Dec 2018 11:03
Last Modified: 25 Dec 2018 11:03
URI: http://eprints.uet.vnu.edu.vn/eprints/id/eprint/3375

Available Versions of this Item

Actions (login required)

View Item View Item