{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,18]],"date-time":"2026-05-18T10:09:02Z","timestamp":1779098942955,"version":"3.51.4"},"publisher-location":"Berlin, Heidelberg","reference-count":31,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783642387081","type":"print"},{"value":"9783642387098","type":"electronic"}],"license":[{"start":{"date-parts":[[2014,1,1]],"date-time":"2014-01-01T00:00:00Z","timestamp":1388534400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014]]},"DOI":"10.1007\/978-3-319-10975-6_17","type":"book-chapter","created":{"date-parts":[[2014,9,3]],"date-time":"2014-09-03T08:26:14Z","timestamp":1409732774000},"page":"226-238","source":"Crossref","is-referenced-by-count":12,"title":["Detection of Malicious Web Pages Using System Calls Sequences"],"prefix":"10.1007","author":[{"given":"Gerardo","family":"Canfora","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eric","family":"Medvet","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Francesco","family":"Mercaldo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Corrado Aaron","family":"Visaggio","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"17_CR1","unstructured":"2013 threats predictions (2013), \n \n http:\/\/www.mcafee.com\/us\/resources\/reports\/rp-threat-predictions-2013.pdf"},{"key":"17_CR2","unstructured":"Pandalabs quarterly report: January - March 2013 (2013), \n \n https:\/\/www.switch.ch\/export\/sites\/default\/about\/news\/2013\/files\/PandaLabs-Quaterly-Report.pdf"},{"key":"17_CR3","doi-asserted-by":"crossref","unstructured":"Eshete, B.: Effective analysis, characterization, and detection of malicious web pages. In: Proceedings of the 22nd International Conference on World Wide Web Companion, pp. 355\u2013360. International World Wide Web Conferences Steering Committee (2013)","DOI":"10.1145\/2487788.2487942"},{"key":"17_CR4","unstructured":"Trend Micro: Web threats (2012), \n \n http:\/\/apac.trendmicro.com\/apac\/threats\/enterprise\/web-threats"},{"key":"17_CR5","unstructured":"Weiss, A.: Top 5 security threats in html5 (2011), \n \n http:\/\/www.esecurityplanet.com\/trends\/article.php\/3916381\/Top-5-Security-Threats-in-HTML5.htm"},{"key":"17_CR6","doi-asserted-by":"crossref","unstructured":"Canfora, G., Iannaccone, A.N., Visaggio, C.A.: Static analysis for the detection of metamorphic computer viruses using repeated-instructions counting heuristics. Journal of Computer Virology and Hacking Techniques, 11\u201327 (2013)","DOI":"10.1007\/s11416-013-0189-0"},{"key":"17_CR7","doi-asserted-by":"crossref","unstructured":"Dewald, A., Holz, T., Freiling, F.C.: Adsandbox: Sandboxing javascript to fight malicious websites. In: Proceedings of the 2010 ACM Symposium on Applied Computing, pp. 1859\u20131864. ACM (2010)","DOI":"10.1145\/1774088.1774482"},{"key":"17_CR8","doi-asserted-by":"crossref","unstructured":"Seifert, C., Welch, I., Komisarczuk, P.: Identification of malicious web pages with static heuristics. In: Australasian Telecommunication Networks and Applications Conference, ATNAC 2008, pp. 91\u201396. IEEE (2008)","DOI":"10.1109\/ATNAC.2008.4783302"},{"key":"17_CR9","doi-asserted-by":"crossref","unstructured":"Canali, D., Cova, M., Vigna, G., Kruegel, C.: Prophiler: a fast filter for the large-scale detection of malicious web pages. In: Proceedings of the 20th International Conference on World Wide Web, pp. 197\u2013206. ACM (2011)","DOI":"10.1145\/1963405.1963436"},{"key":"17_CR10","unstructured":"Choi, H., Zhu, B.B., Lee, H.: Detecting malicious web links and identifying their attack types. In: Proceedings of the 2nd USENIX Conference on Web Application Development, p. 11. USENIX Association (2011)"},{"key":"17_CR11","doi-asserted-by":"crossref","unstructured":"Ma, J., Saul, L.K., Savage, S., Voelker, G.M.: Beyond blacklists: learning to detect malicious web sites from suspicious urls. In: Proceedings of the 15th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, pp. 1245\u20131254. ACM (2009)","DOI":"10.1145\/1557019.1557153"},{"key":"17_CR12","doi-asserted-by":"crossref","unstructured":"Ma, J., Saul, L.K., Savage, S., Voelker, G.M.: Identifying suspicious urls: an application of large-scale online learning. In: Proceedings of the 26th Annual International Conference on Machine Learning, pp. 681\u2013688. ACM (2009)","DOI":"10.1145\/1553374.1553462"},{"key":"17_CR13","doi-asserted-by":"crossref","unstructured":"Thomas, K., Grier, C., Ma, J., Paxson, V., Song, D.: Design and evaluation of a real-time url spam filtering service. In: 2011 IEEE Symposium on Security and Privacy (SP), pp. 447\u2013462. IEEE (2011)","DOI":"10.1109\/SP.2011.25"},{"key":"17_CR14","doi-asserted-by":"crossref","unstructured":"Sorio, E., Bartoli, A., Medvet, E.: Detection of hidden fraudulent urls within trusted sites using lexical features. In: 2013 Eighth International Conference on Availability, Reliability and Security (ARES), pp. 242\u2013247. IEEE (2013)","DOI":"10.1109\/ARES.2013.31"},{"key":"17_CR15","unstructured":"Kim, B.-I., Im, C.-T., Jung, H.-C.: Suspicious malicious web site detection with strength analysis of a javascript obfuscation. International Journal of Advanced Science & Technology\u00a026 (2011)"},{"key":"17_CR16","unstructured":"Ikinci, A., Holz, T., Freiling, F.: Monkey-spider: Detecting malicious websites with low-interaction honeyclients, sicherheit (2008)"},{"key":"17_CR17","doi-asserted-by":"crossref","unstructured":"Kolbitsch, C., Livshits, B., Zorn, B., Seifert, C.: Rozzle: De-cloaking internet malware. In: 2012 IEEE Symposium on Security and Privacy (SP), pp. 443\u2013457. IEEE (2012)","DOI":"10.1109\/SP.2012.48"},{"key":"17_CR18","doi-asserted-by":"crossref","unstructured":"Cova, M., Kruegel, C., Vigna, G.: Detection and analysis of drive-by-download attacks and malicious javascript code. In: Proceedings of the 19th International Conference on World Wide Web, pp. 281\u2013290. ACM (2010)","DOI":"10.1145\/1772690.1772720"},{"key":"17_CR19","unstructured":"Moshchuk, A., Bragin, T., Deville, D., Gribble, S.D., Levy, H.M.: Spyproxy: Execution-based detection of malicious web content. In: Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium, vol.\u00a03, pp. 1\u201316. USENIX Association (2007)"},{"key":"17_CR20","doi-asserted-by":"crossref","unstructured":"Rieck, K., Krueger, T., Dewald, A.: Cujo: efficient detection and prevention of drive-by-download attacks. In: Proceedings of the 26th Annual Computer Security Applications Conference, pp. 31\u201339 (2010)","DOI":"10.1145\/1920261.1920267"},{"key":"17_CR21","doi-asserted-by":"crossref","unstructured":"Qassrawi, M.T., Zhang, H.: Detecting malicious web servers with honeyclients. Journal of Networks\u00a06(1) (2011)","DOI":"10.4304\/jnw.6.1.145-152"},{"key":"17_CR22","unstructured":"The honeynet project (2011), \n \n https:\/\/projects.honeynet.org\/honeyc"},{"key":"17_CR23","unstructured":"Mitre honeyclient project (2011), \n \n http:\/\/search.cpan.org\/~mitrehc"},{"key":"17_CR24","unstructured":"Capture-hpc client honeypot \/ honeyclient (2011), \n \n https:\/\/projects.honeynet.org\/capture-hpc"},{"key":"17_CR25","unstructured":"Wang, Y.-M., Beck, D., Jiang, X., Roussev, R., Verbowski, C., Chen, S., King, S.: Automated web patrol with strider honeymonkeys. In: Proceedings of the 2006 Network and Distributed System Security Symposium, pp. 35\u201349 (2006)"},{"key":"17_CR26","unstructured":"Curtsinger, C., Livshits, B., Zorn, B., Seifert, C.: Zozzle: Low-overhead mostly static javascript malware detection. In: Proceedings of the Usenix Security Symposium (2011)"},{"key":"17_CR27","unstructured":"Kapravelos, A., Shoshitaishvili, Y., Cova, M., Kruegel, C., Vigna, G.: Revolver: An automated approach to the detection of evasive web-based malware. In: USENIX Security Symposium (2013)"},{"issue":"3","key":"17_CR28","first-page":"261","volume":"25","author":"J.R. Pate","year":"2013","unstructured":"Pate, J.R., Tairas, R., Kraft, N.A.: Clone evolution: a systematic review. Journal of Software: Evolution and Process\u00a025(3), 261\u2013283 (2013)","journal-title":"Journal of Software: Evolution and Process"},{"key":"17_CR29","unstructured":"Roy, C.K., Cordy, J.R.: A survey on software clone detection research. School of Computing TR 2007-541, Queen\u2019s University (2007)"},{"key":"17_CR30","unstructured":"Bayer, U., Comparetti, P.M., Hlauschek, C., Kruegel, C., Kirda, E.: Scalable, behavior-based malware clustering. In: NDSS, vol.\u00a09, pp. 8\u201311. Citeseer (2009)"},{"key":"17_CR31","doi-asserted-by":"crossref","unstructured":"Jang, J., Brumley, D., Venkataraman, S.: Bitshred: feature hashing malware for scalable triage and semantic analysis. In: Proceedings of the 18th ACM Conference on Computer and Communications Security, pp. 309\u2013320. ACM (2011)","DOI":"10.1145\/2046707.2046742"}],"container-title":["Lecture Notes in Computer Science","Advanced Information Systems Engineering"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-10975-6_17","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,27]],"date-time":"2019-05-27T15:20:14Z","timestamp":1558970414000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-10975-6_17"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014]]},"ISBN":["9783642387081","9783642387098"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-10975-6_17","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2014]]}}}