{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,16]],"date-time":"2026-03-16T09:30:04Z","timestamp":1773653404024,"version":"3.50.1"},"publisher-location":"Cham","reference-count":26,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031948541","type":"print"},{"value":"9783031948558","type":"electronic"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-94855-8_13","type":"book-chapter","created":{"date-parts":[[2025,6,13]],"date-time":"2025-06-13T05:51:15Z","timestamp":1749793875000},"page":"201-214","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Enhancing JavaScript Malware Detection Through Weighted Behavioral DFAs"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0008-7641-1566","authenticated-orcid":false,"given":"Pedro","family":"Pereira","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0009-0004-1038-8384","authenticated-orcid":false,"given":"Jos\u00e9","family":"Gon\u00e7alves","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4968-3653","authenticated-orcid":false,"given":"Jo\u00e3o","family":"Vitorino","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8075-531X","authenticated-orcid":false,"given":"Eva","family":"Maia","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2519-9859","authenticated-orcid":false,"given":"Isabel","family":"Pra\u00e7a","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2025,6,14]]},"reference":[{"key":"13_CR1","doi-asserted-by":"publisher","unstructured":"Canali, D., Cova, M., Vigna, G., Kruegel, C.: Prophiler: a fast filter for the large-scale detection of malicious web pages. In: Proceedings of the 20th International Conference on World Wide Web. WWW \u201911, pp. 197\u2013206. Association for Computing Machinery, New York (2011). https:\/\/doi.org\/10.1145\/1963405.1963436","DOI":"10.1145\/1963405.1963436"},{"key":"13_CR2","doi-asserted-by":"publisher","unstructured":"Chen, P., Desmet, L., Huygens, C., Joosen, W.: Longitudinal study of the use of client-side security mechanisms on the european web. In: Proceedings of the 25th International Conference Companion on World Wide Web. WWW \u201916 Companion, pp. 457\u2013462. International World Wide Web Conferences Steering Committee, Republic and Canton of Geneva (2016). https:\/\/doi.org\/10.1145\/2872518.2888605","DOI":"10.1145\/2872518.2888605"},{"key":"13_CR3","doi-asserted-by":"publisher","unstructured":"Cova, M., Kr\u00fcgel, C., Vigna, G.: Detection and analysis of drive-by-download attacks and malicious javascript code. In: Proceedings of the 19th International Conference on World Wide Web, pp. 281\u2013290 (2010). https:\/\/doi.org\/10.1145\/1772690.1772720","DOI":"10.1145\/1772690.1772720"},{"key":"13_CR4","unstructured":"Curtsinger, C., Livshits, B., Zorn, B., Seifert, C.: Zozzle: fast and precise in-browser javascript malware detection. In: Proceedings of the 20th USENIX Conference on Security. SEC\u201911, p.\u00a03. USENIX Association (2011)"},{"key":"13_CR5","doi-asserted-by":"publisher","unstructured":"Gorji, A., Abadi, M.: Detecting obfuscated javascript malware using sequences of internal function calls. In: Proceedings of the 2014 ACM Southeast Conference. ACMSE \u201914. Association for Computing Machinery, New York, NY (2014). https:\/\/doi.org\/10.1145\/2638404.2737181","DOI":"10.1145\/2638404.2737181"},{"key":"13_CR6","doi-asserted-by":"publisher","unstructured":"Guo, Y.: A review of machine learning-based zero-day attack detection: challenges and future directions. Comput. Commun. 198 (2022). https:\/\/doi.org\/10.1016\/j.comcom.2022.11.001","DOI":"10.1016\/j.comcom.2022.11.001"},{"key":"13_CR7","doi-asserted-by":"publisher","unstructured":"He, X., Xu, L., Cha, C.: Malicious javascript code detection based on hybrid analysis. In: 2018 25th Asia-Pacific Software Engineering Conference (APSEC), pp. 365\u2013374 (2018). https:\/\/doi.org\/10.1109\/APSEC.2018.00051","DOI":"10.1109\/APSEC.2018.00051"},{"key":"13_CR8","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1016\/j.future.2021.12.013","volume":"130","author":"C Jing","year":"2022","unstructured":"Jing, C., Wu, Y., Cui, C.: Ensemble dynamic behavior detection method for adversarial malware. Futur. Gener. Comput. Syst. 130, 193\u2013206 (2022). https:\/\/doi.org\/10.1016\/j.future.2021.12.013","journal-title":"Futur. Gener. Comput. Syst."},{"key":"13_CR9","doi-asserted-by":"crossref","unstructured":"Jodavi, M., Abadi, M., Parhizkar, E.: Jsobfusdetector: a binary pso-based one-class classifier ensemble to detect obfuscated javascript code. 2015 The International Symposium on Artificial Intelligence and Signal Processing (AISP), pp. 322\u2013327 (2015). https:\/\/api.semanticscholar.org\/CorpusID:14848014","DOI":"10.1109\/AISP.2015.7123508"},{"key":"13_CR10","doi-asserted-by":"publisher","unstructured":"Johns, M.: Code injection vulnerabilities in web applications - exemplified at cross-site scripting. it - Inf. Technol. 53, 256 (2011). https:\/\/doi.org\/10.1524\/itit.2011.0651","DOI":"10.1524\/itit.2011.0651"},{"issue":"5","key":"13_CR11","doi-asserted-by":"publisher","first-page":"35","DOI":"10.1109\/52.605929","volume":"14","author":"A Kosoresow","year":"1997","unstructured":"Kosoresow, A., Hofmeyer, S.: Intrusion detection via system call traces. IEEE Softw. 14(5), 35\u201342 (1997). https:\/\/doi.org\/10.1109\/52.605929","journal-title":"IEEE Softw."},{"issue":"1","key":"13_CR12","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s11416-011-0157-5","volume":"8","author":"W Ma","year":"2012","unstructured":"Ma, W., Duan, P., Liu, S., Gu, G., Liu, J.C.: Shadow attacks: automatically evading system-call-behavior based malware detection. J. Comput. Virol. 8(1), 1\u201313 (2012). https:\/\/doi.org\/10.1007\/s11416-011-0157-5","journal-title":"J. Comput. Virol."},{"key":"13_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"78","DOI":"10.1007\/978-3-540-87403-4_5","volume-title":"Recent Advances in Intrusion Detection","author":"L Martignoni","year":"2008","unstructured":"Martignoni, L., Stinson, E., Fredrikson, M., Jha, S., Mitchell, J.C.: A layered architecture for detecting malicious behaviors. In: Lippmann, R., Kirda, E., Trachtenberg, A. (eds.) RAID 2008. LNCS, vol. 5230, pp. 78\u201397. Springer, Heidelberg (2008). https:\/\/doi.org\/10.1007\/978-3-540-87403-4_5"},{"key":"13_CR14","unstructured":"Pantelaios, N., Kapravelos, A.: Fv8: a forced execution javascript engine for detecting evasive techniques (2024). https:\/\/arxiv.org\/abs\/2405.13175"},{"key":"13_CR15","unstructured":"Ravi, S., Balakrishnan, N., Venkatesh, B.: Behavior-based malware analysis using profile hidden markov models. In: 2013 International Conference on Security and Cryptography (SECRYPT), pp. 1\u201312 (2013). https:\/\/api.semanticscholar.org\/CorpusID:18622802"},{"key":"13_CR16","doi-asserted-by":"crossref","unstructured":"Ribeiro, M.T., Singh, S., Guestrin, C.: \u201cwhy should i trust you?\u201d: explaining the predictions of any classifier (2016). https:\/\/arxiv.org\/abs\/1602.04938","DOI":"10.18653\/v1\/N16-3020"},{"key":"13_CR17","doi-asserted-by":"publisher","unstructured":"Rieck, K., Krueger, T., Dewald, A.: Cujo: efficient detection and prevention of drive-by-download attacks. In: Proceedings of the 26th Annual Computer Security Applications Conference, pp. 31\u201339 (2010). https:\/\/doi.org\/10.1145\/1920261.1920267","DOI":"10.1145\/1920261.1920267"},{"key":"13_CR18","doi-asserted-by":"crossref","unstructured":"Rus, C., Sarmah, D.K., El-Hajj, M.: Defeating magecart attacks in a naiss way. In: SECRYPT, pp. 691\u2013697 (2023)","DOI":"10.5220\/0012079300003555"},{"key":"13_CR19","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101775","volume":"93","author":"S Sebastio","year":"2020","unstructured":"Sebastio, S., et al.: Optimizing symbolic execution for malware behavior classification. Comput. Secur. 93, 101775 (2020). https:\/\/doi.org\/10.1016\/j.cose.2020.101775","journal-title":"Comput. Secur."},{"key":"13_CR20","doi-asserted-by":"publisher","unstructured":"Sekar, R., Bendre, M., Dhurjati, D., Bollineni, P.: A fast automaton-based method for detecting anomalous program behaviors. In: Proceedings 2001 IEEE Symposium on Security and Privacy. S &P 2001, pp. 144 \u2013 155 (2001). https:\/\/doi.org\/10.1109\/SECPRI.2001.924295","DOI":"10.1109\/SECPRI.2001.924295"},{"key":"13_CR21","doi-asserted-by":"publisher","unstructured":"Sohan, M.F., Basalamah, A.: A systematic literature review and quality analysis of javascript malware detection. IEEE Access 8 (2020). https:\/\/doi.org\/10.1109\/ACCESS.2020.3031690","DOI":"10.1109\/ACCESS.2020.3031690"},{"key":"13_CR22","unstructured":"Stock, B., Johns, M., Steffens, M., Backes, M.: How the web tangled itself: uncovering the history of client-side web (in)security. In: Proceedings of the 26th USENIX Conference on Security Symposium. SEC\u201917, pp. 971\u2013987. USENIX Association (2017)"},{"key":"13_CR23","doi-asserted-by":"crossref","unstructured":"Toreini, E., Mehrnezhad, M., Shahandashti, S.F., Hao, F.: Domtegrity: ensuring web page integrity against malicious browser extensions (2019). https:\/\/arxiv.org\/abs\/1905.12951","DOI":"10.1007\/s10207-019-00442-1"},{"key":"13_CR24","doi-asserted-by":"publisher","unstructured":"Touili, T.: Register automata for malware specification. In: Proceedings of the 17th International Conference on Availability, Reliability and Security. ARES \u201922. Association for Computing Machinery, New York (2022). https:\/\/doi.org\/10.1145\/3538969.3544442","DOI":"10.1145\/3538969.3544442"},{"issue":"1","key":"13_CR25","doi-asserted-by":"publisher","first-page":"25487","DOI":"10.1038\/s41598-024-74350-3","volume":"14","author":"X Wang","year":"2024","unstructured":"Wang, X., Zhai, J., Yang, H.: Detecting command injection attacks in web applications based on novel deep learning methods. Sci. Rep. 14(1), 25487 (2024). https:\/\/doi.org\/10.1038\/s41598-024-74350-3","journal-title":"Sci. Rep."},{"key":"13_CR26","doi-asserted-by":"publisher","unstructured":"Xue, Y., Wang, J., Liu, Y., Xiao, H., Sun, J., Chandramohan, M.: Detection and classification of malicious javascript via attack behavior modelling. In: Proceedings of the 2015 International Symposium on Software Testing and Analysis. ISSTA 2015, pp. 48\u201359. Association for Computing Machinery, New York (2015). https:\/\/doi.org\/10.1145\/2771783.2771814","DOI":"10.1145\/2771783.2771814"}],"container-title":["Communications in Computer and Information Science","Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-94855-8_13","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,12,8]],"date-time":"2025-12-08T12:13:58Z","timestamp":1765196038000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-94855-8_13"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031948541","9783031948558"],"references-count":26,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-94855-8_13","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"value":"1865-0929","type":"print"},{"value":"1865-0937","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"14 June 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"EICC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Interdisciplinary Cybersecurity Conference","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Rennes","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18 June 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 June 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"9","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"eicc2025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/www.fvv.um.si\/eicc2025\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}