Malicious script static detection method based on SVM (support vector machine)

A support vector machine and malicious script technology, applied in the field of static detection of malicious Javascript, can solve the problem of not being able to identify unknown malicious scripts, etc., and achieve the effects of improving the ability to resist evasion, increasing the accuracy rate, and reducing the false positive rate

Inactive Publication Date: 2014-02-12
ZHEJIANG UNIV OF TECH
View PDF3 Cites 32 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0010] In order to overcome the prior art, especially static detection technology, the problem that malicious script attacks cannot identify unknown malicious scripts, the present invention proposes a static detection method for malicious scripts based on SVM with high detection efficiency and good detection accuracy of unknown malicious scripts

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Malicious script static detection method based on SVM (support vector machine)
  • Malicious script static detection method based on SVM (support vector machine)
  • Malicious script static detection method based on SVM (support vector machine)

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] The present invention will be further described below with reference to the accompanying drawings.

[0035] Malicious script attacks have always been the main problem threatening network information security. The attacker injects malicious code into the script of the web page, so that when the user accesses the web page, the malicious code is run to realize the attack. Aiming at malicious script attack, the present invention proposes a malicious script static detection technology based on SVM, which combines classification technology and static detection technology, analyzes and extracts malicious script, and uses machine learning technology SVM to classify. It has the characteristics of high detection rate, low false positive rate, high detection rate and the ability to detect unknown attacks. The method is applied to an example dataset for experiments, and excellent detection performance is obtained.

[0036] like figure 1 , the main work of the present invention i...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A malicious script detection method based on an SVM (support vector machine) comprises the following steps: 1), crawling a webpage from the Internet, and acquiring the webpage link; 2), acquiring Java script content corresponding to the link; 3), analyzing web intrusion such as SQL (structured query language) injection and the like based on the script to obtain characteristics relative to the intrusion, performing characteristic extraction on acquired script content according to the intrusion characteristics, and transforming every script into a characteristic-based characteristic vector; and 4), acquiring an optimal classification model of the SVM according to a sort algorithm, classifying the acquired characteristic vectors by the model, and judging whether the script is a malicious script so as to perform related follow-up processing.

Description

technical field [0001] The invention relates to a malicious script measurement technology, in particular to a static detection method of malicious Javascript. Background technique [0002] With the rapid development of network informatization, more and more attention has been paid to the issue of information security. Computer viruses, Trojan horses, and malicious script codes are the main security threats to computer networks. Malicious scripts spread to users' computers by constructing special web pages that contain Trojans, viruses, worms or aggressive programs when users visit these web pages. [0003] Malicious scripts are special codes hidden in scripting languages, such as js files. Due to the standardized format and syntax of scripting languages, we can easily obtain a lot of information about the static characteristics of files, and analyze the difference between malicious scripts and benign scripts. [0004] JavaScript is a lightweight object-based and event-driv...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/56
Inventor 王卫红秦绪佳吕银均
Owner ZHEJIANG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap