{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T12:54:28Z","timestamp":1756385668826,"version":"3.28.0"},"reference-count":37,"publisher":"IEEE","license":[{"start":{"date-parts":[[2023,11,7]],"date-time":"2023-11-07T00:00:00Z","timestamp":1699315200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2023,11,7]],"date-time":"2023-11-07T00:00:00Z","timestamp":1699315200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023,11,7]]},"DOI":"10.1109\/dsc61021.2023.10354106","type":"proceedings-article","created":{"date-parts":[[2023,12,15]],"date-time":"2023-12-15T14:18:00Z","timestamp":1702649880000},"page":"1-8","source":"Crossref","is-referenced-by-count":1,"title":["Detecting Web Application DAST Attacks with Machine Learning"],"prefix":"10.1109","author":[{"given":"Pojan","family":"Shahrivar","sequence":"first","affiliation":[{"name":"Rapid7 LLC,Boston,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Stuart","family":"Millar","sequence":"additional","affiliation":[{"name":"Rapid7 LLC,Boston,USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ezzeldin","family":"Shereen","sequence":"additional","affiliation":[{"name":"KTH Royal Institute of Technology,Stockholm,Sweden"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"volume-title":"ENISA Threat Landscape 2020-Web application attacks","year":"2021","key":"ref1"},{"volume-title":"OWASP Top Ten","key":"ref2"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1145\/3560830.3563724"},{"volume-title":"Kali tools: Kali linux tools March","year":"2023","key":"ref4"},{"volume-title":"Burp scanner-web vulnerability scanner from portswigger","key":"ref5"},{"volume-title":"OWASP Zed Attack Proxy (ZAP)","key":"ref6"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-78440-3_36"},{"key":"ref8","first-page":"361","article-title":"Applying markov chains to web intrusion detection","volume-title":"Proceedings of Reuni\u00f3n Espanola sobre Criptolog\u00eda y Seguridad de la Informaci\u00f3n (RECSI 2010)","author":"Perez-Villegas"},{"volume-title":"An anomaly-based approach for intrusion detection in web traffic","year":"2010","author":"Torrano-Gim\u00e9nez","key":"ref9"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-04091-7_11"},{"key":"ref11","first-page":"23","article-title":"An anomaly-based web appli-cation firewall","volume-title":"SECRYPT","author":"Torrano-Gimenez"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.1987.232894"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948144"},{"key":"ref14","article-title":"Application layer intrusion detection with combination of explicit-rule-based and machine learning algorithms and deployment in cyber-defence program","volume":"abs\/1411.3089","author":"Saha","year":"2014","journal-title":"CoRR"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.4108\/eai.3-12-2015.2262516"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/TETCI.2017.2772792"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2019.2895334"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2017.2762418"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CISDA.2009.5356528"},{"volume-title":"UCI Machine Learning Repository: KDD Cup 1999 dataset","key":"ref20"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1186\/s13174-019-0115-x"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/CYBConf.2017.7985745"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1093\/jigpal\/jzu038"},{"volume-title":"Project AppSensor","key":"ref24"},{"volume-title":"WebGoat 8: A deliberately insecure Web Application","key":"ref25"},{"key":"ref26","article-title":"Exploratory data analysis","volume":"2","author":"Tukey","year":"1977","journal-title":"Reading, Mass"},{"volume-title":"WebDAV propfind method allows web directory browsing","key":"ref27"},{"volume-title":"HTTP track","key":"ref28"},{"volume-title":"Scikit-learn: Minmaxscaler","key":"ref29"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1108\/eb026526"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.5120\/ijca2018917395"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1016\/j.procs.2016.06.047"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-13-6001-5_43"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-15-6648-6_10"},{"volume-title":"Scikit-learn: Random forest classifier","key":"ref35"},{"volume-title":"pandas-dev\/pandas: Pandas","year":"2023","key":"ref36"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1038\/s41586-020-2649-2"}],"event":{"name":"2023 IEEE Conference on Dependable and Secure Computing (DSC)","start":{"date-parts":[[2023,11,7]]},"location":"Tampa, FL, USA","end":{"date-parts":[[2023,11,9]]}},"container-title":["2023 IEEE Conference on Dependable and Secure Computing (DSC)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/10353927\/10354085\/10354106.pdf?arnumber=10354106","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,1,12]],"date-time":"2024-01-12T15:38:34Z","timestamp":1705073914000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10354106\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,7]]},"references-count":37,"URL":"https:\/\/doi.org\/10.1109\/dsc61021.2023.10354106","relation":{},"subject":[],"published":{"date-parts":[[2023,11,7]]}}}