期刊名称:International Journal of Advanced Research In Computer Science and Software Engineering
印刷版ISSN:2277-6451
电子版ISSN:2277-128X
出版年度:2013
卷号:3
期号:3
出版社:S.S. Mishra
摘要:JavaScript helps to both web pages to look attractive and to Developers to reduce Server side functionality. JavaScript runs on the web browser, interacts with web browser's window. JavaScript helps Attacker's to hide their code. This code can be Malicious. Various normal defined methods can be used by an attacker to hide the code. Obfuscation techniques are also used to obfuscate the malicious code. Due to the malicious code, JavaScript becomes malicious and causes harm to the webpage. To decode Malicious JavaScript has approach to scan scripts in the web page, in that script, check word by word and character by character to know meaning of the code. This technique can be analysed by two ways. First approach is to analyse script manually and second the analysis of the script by an automated approach. First, Manual Analysis of the script contains scanning of the script by both human eye and human understanding. Once this approach has been understood, second approach is reviewed. In Seco nd approach, analysis of the script is done with the help of the programs. Programs searches for the script in web page automatically, result of that program passed to another program which scans the words and character to understand the meaning of the script. With the help of this scanning, maliciousness of script can be detected. In addition to these approaches, Script would be run in safer environment to know how it can harm to web page if needed
