Le, Van Giap and Nguyen, Huu Tung and Pham, Duy Phuc and Nguyen, Ngoc Hoa (2017) A hybrid solution for detecting malicious Web shells and Web application vulnerabilities. Transactions on Computational Collective Intelligence . ISSN 2190-9288 (In Press)
 | There is a more recent version of this item available. |
Abstract
According to Internet Live Stats, it is evident that organizations and developers are underestimating security issues on their system. In this paper, we propose a protective and extensible solution for automatically detecting both the Web application vulnerabilities and malicious Web shells. Based on the original THAPS, we proposed E-THAPS which implemented a new detection mechanism, improved SQLi, XSS and vulnerable detection capabilities. For malicious Web shell detection, taint analysis and pattern matching methods are chosen to be main approaches. The broad experiment that we performed showed an outstanding result in comparison with other solutions for both detecting Web application vulnerabilities and malicious Web shells.
| Item Type: | Article |
|---|---|
| Subjects: | Information Technology (IT) ISI-indexed journals |
| Divisions: | Faculty of Information Technology (FIT) |
| Depositing User: | Assoc.Prof Hoá NGUYỄN Ngọc |
| Date Deposited: | 14 Jun 2017 08:27 |
| Last Modified: | 14 Jun 2017 08:27 |
| URI: | http://eprints.uet.vnu.edu.vn/eprints/id/eprint/2508 |
Available Versions of this Item
- A hybrid solution for detecting malicious Web shells and Web application vulnerabilities. (deposited 14 Jun 2017 08:27) [Currently Displayed]
Actions (login required)
 |
View Item |
