{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T20:25:43Z","timestamp":1759091143603,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":25,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783662586105"},{"type":"electronic","value":"9783662586112"}],"license":[{"start":{"date-parts":[[2018,12,19]],"date-time":"2018-12-19T00:00:00Z","timestamp":1545177600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-662-58611-2_5","type":"book-chapter","created":{"date-parts":[[2018,12,18]],"date-time":"2018-12-18T17:14:15Z","timestamp":1545153255000},"page":"184-208","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":9,"title":["GuruWS: A Hybrid Platform for Detecting Malicious Web Shells and Web Application Vulnerabilities"],"prefix":"10.1007","author":[{"given":"Van-Giap","family":"Le","sequence":"first","affiliation":[]},{"given":"Huu-Tung","family":"Nguyen","sequence":"additional","affiliation":[]},{"given":"Duy-Phuc","family":"Pham","sequence":"additional","affiliation":[]},{"given":"Van-On","family":"Phung","sequence":"additional","affiliation":[]},{"given":"Ngoc-Hoa","family":"Nguyen","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2018,12,19]]},"reference":[{"key":"5_CR1","unstructured":"Internet Live Stats. \nhttp:\/\/www.internetlivestats.com\/\n\n. Accessed 21 May 2017"},{"key":"5_CR2","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"367","DOI":"10.1007\/978-3-319-45243-2_34","volume-title":"Computational Collective Intelligence","author":"V-G Le","year":"2016","unstructured":"Le, V.-G., Nguyen, H.-T., Lu, D.-N., Nguyen, N.-H.: A solution for automatically malicious web shell and web application vulnerability detection. In: Nguyen, N.-T., Manolopoulos, Y., Iliadis, L., Trawi\u0144ski, B. (eds.) ICCCI 2016. LNCS (LNAI), vol. 9875, pp. 367\u2013378. Springer, Cham (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-319-45243-2_34"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Mazumder, M., Braje, T.: Safe client\/server web development with Haskell. In: 2016 IEEE Cybersecurity Development (SecDev), p. 150 (2016)","DOI":"10.1109\/SecDev.2016.040"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Bherde, G.P., Pund, M.A.: Recent attack prevention techniques in web service applications. In: International Conference on Automatic Control and Dynamic Optimization Techniques (ICACDOT), pp. 1174\u20131180 (2016)","DOI":"10.1109\/ICACDOT.2016.7877771"},{"key":"5_CR5","unstructured":"Khari, M., Sangwan, P., Vaishali: Web-application attacks: a survey. In: 2016 3rd International Conference on Computing for Sustainable Global Development (INDIACom), New Delhi, pp. 2187\u20132191 (2016)"},{"key":"5_CR6","doi-asserted-by":"crossref","unstructured":"Kals, S., Kirda, E., Kruegel, C., Jovanovich, N.: SecuBat: a web vulnerability scanner. In: 15th International Conference on World Wide Web, pp. 247\u2013256 (2006)","DOI":"10.1145\/1135777.1135817"},{"key":"5_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"31","DOI":"10.1007\/978-3-642-34210-3_3","volume-title":"Secure IT Systems","author":"T Jensen","year":"2012","unstructured":"Jensen, T., Pedersen, H., Olesen, M.C., Hansen, R.R.: THAPS: automated vulnerability scanning of PHP applications. In: J\u00f8sang, A., Carlsson, B. (eds.) NordSec 2012. LNCS, vol. 7617, pp. 31\u201346. Springer, Heidelberg (2012). \nhttps:\/\/doi.org\/10.1007\/978-3-642-34210-3_3"},{"key":"5_CR8","unstructured":"Dahse, J.: RIPS - a static source code analyser for vulnerabilities in PHP scripts. In: Seminar Work at Chair for Network and Data Security (2010)"},{"key":"5_CR9","unstructured":"Sasi, R.: Web backdoors - attack, evasion and detection. In: C0C0N Sec Conference (2011)"},{"key":"5_CR10","unstructured":"Petukhov, A., Dmitry, K.: Detecting security vulnerabilities in Web applications using dynamic analysis with penetration testing. In: OWASP Application Security Conference. Computing Systems Lab, Department of Computer Science, Moscow State University (2008)"},{"key":"5_CR11","unstructured":"Dahse, J., Holz, T.: Static detection of second-order vulnerabilities in web applications. In: 23rd USENIX Security Symposium (USENIX Security 2014), pp. 989\u20131003 (2014)"},{"key":"5_CR12","doi-asserted-by":"crossref","unstructured":"Starov, O., Dahse, J., Ahmad, S., Holz, T., Nikiforakis, N.: No honor among thieves: a large-scale analysis of malicious web shells. In: 25th International Conference on World Wide Web, pp. 1021\u20131032 (2016)","DOI":"10.1145\/2872427.2882992"},{"key":"5_CR13","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"688","DOI":"10.1007\/978-3-662-49381-6_66","volume-title":"Intelligent Information and Database Systems","author":"HH Le","year":"2016","unstructured":"Le, H.H., Nguyen, N.H., Nguyen, T.T.: Exploiting GPU for large scale fingerprint identification. In: Nguyen, N.T., Trawi\u0144ski, B., Fujita, H., Hong, T.-P. (eds.) ACIIDS 2016. LNCS (LNAI), vol. 9621, pp. 688\u2013697. Springer, Heidelberg (2016). \nhttps:\/\/doi.org\/10.1007\/978-3-662-49381-6_66"},{"issue":"3","key":"5_CR14","doi-asserted-by":"publisher","first-page":"252","DOI":"10.1109\/TSE.2016.2584063","volume":"43","author":"H Wang","year":"2017","unstructured":"Wang, H., Liu, T., Guan, X., Shen, C., Zheng, Q., Yang, Z.: Dependence guided symbolic execution. IEEE Trans. Softw. Eng. 43(3), 252\u2013271 (2017)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"4","key":"5_CR15","doi-asserted-by":"publisher","first-page":"345","DOI":"10.1109\/TSE.2015.2487274","volume":"42","author":"M Bhme","year":"2016","unstructured":"Bhme, M., Paul, S.: A probabilistic analysis of the efficiency of automated software testing. IEEE Trans. Softw. Eng. 42(4), 345\u2013360 (2016)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"5_CR16","unstructured":"Web Technology Surveys. \nhttp:\/\/w3techs.com\/technologies\/overview\/programming_language\/all\/\n\n. Accessed 21 May 2017"},{"key":"5_CR17","unstructured":"YARA - The pattern matching swiss knife for malware researchers. \nhttp:\/\/virustotal.github.io\/yara\/\n\n. Accessed 10 May 2017"},{"key":"5_CR18","unstructured":"Popov, N.: PHP-parser introduction. \nhttps:\/\/github.com\/nikic\/PHP-Parser\/blob\/master\/doc\/0_Introduction.markdown\n\n. Accessed 15 Apr 2016"},{"key":"5_CR19","unstructured":"The Open Web Application Security Project. Static Code Analysis. \nhttps:\/\/www.owasp.org\/index.php\/Static_Code_Analysis\n\n. Accessed 22 May 2017"},{"key":"5_CR20","unstructured":"The Open Web Application Security Project. Attack Category: Command Injection. \nhttps:\/\/www.owasp.org\/index.php\/Command_Injection\n\n. Accessed 18 May 2017"},{"key":"5_CR21","unstructured":"The Open Web Application Security Project. Attack Category: PHP Object Injection. \nhttps:\/\/www.owasp.org\/index.php\/PHP_Object_Injection\n\n. Accessed 18 May 2017"},{"key":"5_CR22","unstructured":"The Open Web Application Security Project. Testing for Local File Inclusion. \nhttps:\/\/www.owasp.org\/index.php\/Testing_for_Local_File_Inclusion\n\n. Accessed 18 May 2017"},{"key":"5_CR23","unstructured":"The Open Web Application Security Project. Attack Category: Direct Dynamic Code Evaluation (\u2018Eval Injection\u2019). \nhttps:\/\/www.owasp.org\/index.php\/Direct_Dynamic_Code_Evaluation_(\u2019Eval_Injection\u2019)\n\n. Accessed 18 May 2017"},{"key":"5_CR24","unstructured":"Bernardo Damele, A.G., Stampar, M.: SQLMap - automatic SQL injection and database takeover tool. \nhttp:\/\/www.sqlmap.org\/\n\n. Accessed 12 May 2017"},{"key":"5_CR25","first-page":"2687","volume":"7","author":"W Deng","year":"2011","unstructured":"Deng, W., Liu, Q., Cheng, H., Qin, Z.: A malware detection framework based on Kolmogorov complexity. J. Comput. Inf. Syst. 7, 2687\u20132694 (2011)","journal-title":"J. Comput. Inf. Syst."}],"container-title":["Lecture Notes in Computer Science","Transactions on Computational Collective Intelligence XXXII"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-662-58611-2_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,28]],"date-time":"2020-04-28T09:03:48Z","timestamp":1588064628000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-662-58611-2_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,12,19]]},"ISBN":["9783662586105","9783662586112"],"references-count":25,"URL":"https:\/\/doi.org\/10.1007\/978-3-662-58611-2_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2018,12,19]]},"assertion":[{"value":"19 December 2018","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}