期刊名称:International Journal of Advances in Engineering and Management
电子版ISSN:2395-5252
出版年度:2020
卷号:2
期号:8
页码:492-503
DOI:10.35629/5252-0208432438
语种:English
出版社:IJAEM JOURNAL
摘要:Malware refers to the shell codes written by malicious users to redirected users of the trusted application to their malicious or proxy site with intent for criminal activities such as information or identity theft, downloading virus, or spy on users. Many researchers presented overview and solutions to address this challenge using static approach. However the practice is not feasible when source code of target applications is not available. Therefore this study proposed dynamic approach to addressing this challenge that enable remote users to scan target application for any malicious codes without the access to source code. The research focus improving the related approaches in order to help controlling of false positive an false negative result as well as to provide the room for improving proposed studies by the potential researchers. To test and validate the accuracy of research work, three vulnerable web applications were developed with different type of vulnerabilities and accuracy metric were used to analyze the result of three experiments. The result of analysis shows significant improvement by achieved 76% accuracy for the first experiment, 80 accuracy for the second experiment and 83% accuracy for the third experiment and 79.7% overall accuracy.
