{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,7]],"date-time":"2024-09-07T20:22:34Z","timestamp":1725740554333},"publisher-location":"Berlin, Heidelberg","reference-count":20,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642392344"},{"type":"electronic","value":"9783642392351"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-39235-1_8","type":"book-chapter","created":{"date-parts":[[2013,7,13]],"date-time":"2013-07-13T04:07:36Z","timestamp":1373688456000},"page":"139-149","source":"Crossref","is-referenced-by-count":5,"title":["Weaknesses in Defenses against Web-Borne Malware"],"prefix":"10.1007","author":[{"given":"Gen","family":"Lu","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Saumya","family":"Debray","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"8_CR1","doi-asserted-by":"crossref","unstructured":"Brumley, D., Hartwig, C., Liang, Z., Newsome, J., Song, D., Yin, H.: Automatically identifying trigger-based behavior in malware. In: Botnet Detection. Advances in Information Security, vol.\u00a036, pp. 65\u201388 (2008)","DOI":"10.1007\/978-0-387-68768-1_4"},{"key":"8_CR2","doi-asserted-by":"crossref","unstructured":"Canali, D., Cova, M., Vigna, G., Kruegel, C.: Prophiler: A fast filter for the large-scale detection of malicious web pages. In: Proc. 20th International Conference on World Wide Web, pp. 197\u2013206 (2011)","DOI":"10.1145\/1963405.1963436"},{"key":"8_CR3","doi-asserted-by":"crossref","unstructured":"Cova, M., Kruegel, C., Vigna, G.: Detection and analysis of drive-by-download attacks and malicious JavaScript code. In: Proc. 19th International Conference on World Wide Web, pp. 281\u2013290 (2010)","DOI":"10.1145\/1772690.1772720"},{"key":"8_CR4","unstructured":"Curtsinger, C., Livshits, B., Zorn, B., Seifert, C.: Zozzle: Fast and precise in-browser JavaScript malware detection. In: USENIX Security Symposium (2011)"},{"key":"8_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"88","DOI":"10.1007\/978-3-642-02918-9_6","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"M. Egele","year":"2009","unstructured":"Egele, M., Wurzinger, P., Kruegel, C., Kirda, E.: Defending browsers against drive-by downloads: Mitigating heap-spraying code injection attacks. In: Flegel, U., Bruschi, D. (eds.) DIMVA 2009. LNCS, vol.\u00a05587, pp. 88\u2013106. Springer, Heidelberg (2009)"},{"key":"8_CR6","unstructured":"Howard, F.: Malware with your mocha: Obfuscation and anti emulation tricks in malicious JavaScript (September 2010), \n                    \n                      http:\/\/www.sophos.com\/security\/technical-papers\/malware_with_your_mocha.pdf"},{"key":"8_CR7","doi-asserted-by":"crossref","unstructured":"Kolbitsch, C., Livshits, B., Zorn, B., Seifert, C.: Rozzle: De-cloaking internet malware. In: IEEE Symposium on Security and Privacy (May 2012)","DOI":"10.1109\/SP.2012.48"},{"key":"8_CR8","doi-asserted-by":"crossref","unstructured":"Lu, G., Debray, S.: Weaknesses in defenses against web-borne malware. Technical report, Dept. of Computer Science, The University of Arizona (February 2013), \n                    \n                      http:\/\/www.cs.arizona.edu\/~debray\/Publications\/js-emulobf.pdf","DOI":"10.1007\/978-3-642-39235-1_8"},{"key":"8_CR9","doi-asserted-by":"crossref","unstructured":"Moser, A., Kruegel, C., Kirda, E.: Exploring multiple execution paths for malware analysis. In: IEEE Symposium on Security and Privacy, SP 2007, pp. 231\u2013245. IEEE (2007)","DOI":"10.1109\/SP.2007.17"},{"key":"8_CR10","unstructured":"Provos, N., Mavrommatis, P., Rajab, M.A., Monrose, F.: All your iFRAMEs point to us. In: Proc. 17th USENIX Security Symposium, pp. 1\u201315 (2008)"},{"key":"8_CR11","unstructured":"Provos, N., McNamee, D., Mavrommatis, P., Wang, K., Modadugu, N.: The ghost in the browser analysis of web-based malware. In: Proceedings of the First Workshop on Hot Topics in Understanding Botnets, p. 4 (2007)"},{"issue":"4","key":"8_CR12","doi-asserted-by":"publisher","first-page":"42","DOI":"10.1145\/1498765.1498782","volume":"52","author":"N. Provos","year":"2009","unstructured":"Provos, N., Rajab, M.A., Mavrommatis, P.: Cybercrime 2.0: when the cloud turns dark. Communications of the ACM\u00a052(4), 42\u201347 (2009)","journal-title":"Communications of the ACM"},{"key":"8_CR13","unstructured":"Ratanaworabhan, P., Livshits, B., Zorn, B.: Nozzle: A defense against heap-spraying code injection attacks. In: Proceedings of the 18th Conference on USENIX Security Symposium, pp. 169\u2013186. USENIX Association (2009)"},{"key":"8_CR14","doi-asserted-by":"publisher","first-page":"31","DOI":"10.1145\/1920261.1920267","volume-title":"Proceedings of the 26th Annual Computer Security Applications Conference, ACSAC 2010","author":"K. Rieck","year":"2010","unstructured":"Rieck, K., Krueger, T., Dewald, A.: Cujo: efficient detection and prevention of drive-by-download attacks. In: Proceedings of the 26th Annual Computer Security Applications Conference, ACSAC 2010, pp. 31\u201339. ACM, New York (2010)"},{"key":"8_CR15","unstructured":"VMProtect Software. Vmprotect software protection (2008), \n                    \n                      http:\/\/vmpsoft.com\/"},{"key":"8_CR16","unstructured":"Oreans Technologies. Themida: Advanced windows software protection system (September 2008), \n                    \n                      http:\/\/www.oreans.com\/themida.php"},{"key":"8_CR17","unstructured":"The open source vulnerability database, \n                    \n                      http:\/\/www.osvdb.org\/"},{"key":"8_CR18","doi-asserted-by":"crossref","unstructured":"Tzermias, Z., Sykiotakis, G., Polychronakis, M., Markatos, E.P.: Combining static and dynamic analysis for the detection of malicious documents. In: Proceedings of the Fourth European Workshop on System Security, p. 4. ACM (2011)","DOI":"10.1145\/1972551.1972555"},{"key":"8_CR19","unstructured":"Virustotal, \n                    \n                      https:\/\/www.virustotal.com\/"},{"key":"8_CR20","unstructured":"Wepawet, \n                    \n                      http:\/\/wepawet.cs.ucsb.edu"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-39235-1_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,15]],"date-time":"2019-05-15T19:19:00Z","timestamp":1557947940000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-39235-1_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642392344","9783642392351"],"references-count":20,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-39235-1_8","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}