{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,30]],"date-time":"2026-05-30T12:59:02Z","timestamp":1780145942632,"version":"3.54.0"},"publisher-location":"New York, NY, USA","reference-count":53,"publisher":"ACM","license":[{"start":{"date-parts":[[2015,7,13]],"date-time":"2015-07-13T00:00:00Z","timestamp":1436745600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,7,13]]},"DOI":"10.1145\/2771783.2771814","type":"proceedings-article","created":{"date-parts":[[2015,7,10]],"date-time":"2015-07-10T14:10:55Z","timestamp":1436537455000},"page":"48-59","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":29,"title":["Detection and classification of malicious JavaScript via attack behavior modelling"],"prefix":"10.1145","author":[{"given":"Yinxing","family":"Xue","sequence":"first","affiliation":[{"name":"Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Junjie","family":"Wang","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yang","family":"Liu","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Hao","family":"Xiao","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jun","family":"Sun","sequence":"additional","affiliation":[{"name":"Singapore University of Technology and Design, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mahinthan","family":"Chandramohan","sequence":"additional","affiliation":[{"name":"Nanyang Technological University, Singapore"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2015,7,13]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Alexa Top Sites. http:\/\/www.alexa.com\/topsites.  Alexa Top Sites. http:\/\/www.alexa.com\/topsites."},{"key":"e_1_3_2_1_2_1","unstructured":"OpenMalware. http:\/\/http:\/\/oc.gtisc.gatech.edu:8080\/.  OpenMalware. http:\/\/http:\/\/oc.gtisc.gatech.edu:8080\/."},{"key":"e_1_3_2_1_3_1","unstructured":"VXHeaven. http:\/\/vxheavens.com\/.  VXHeaven. http:\/\/vxheavens.com\/."},{"key":"e_1_3_2_1_4_1","volume-title":"https:\/\/www.gartner.com\/doc\/847312\/","author":"Marketscope","year":"2008"},{"key":"e_1_3_2_1_5_1","volume-title":"http:\/\/www.security-assessment.com\/ files\/advisories\/CoolPreviews_Firefox_ Extension_Security_Advisory.pdf","author":"CoolPreviews The","year":"2008"},{"key":"e_1_3_2_1_6_1","volume-title":"http:\/\/www-archive.mozilla.org\/projects\/ security\/components\/ConfigPolicy.html","author":"Security Policies Mozilla Configurable","year":"2009"},{"key":"e_1_3_2_1_7_1","volume-title":"https:\/\/wepawet.iseclab.org\/index.php","author":"Sand","year":"2012"},{"key":"e_1_3_2_1_8_1","volume-title":"http:\/\/media. kaspersky.com\/pdf\/KSB_2013_EN.pdf","author":"Kaspersky","year":"2013"},{"key":"e_1_3_2_1_9_1","unstructured":"JS*: Malicious JavaScript Detection via Attack Behavior Modelling. http:\/\/pat.sce.ntu.edu.sg\/jsstar 2014.  JS*: Malicious JavaScript Detection via Attack Behavior Modelling. http:\/\/pat.sce.ntu.edu.sg\/jsstar 2014."},{"key":"e_1_3_2_1_10_1","volume-title":"Mozilla technologies: XPCOM. https:\/\/developer.mozilla.org\/en-US\/ docs\/Mozilla\/Tech\/XPCOM","author":"MDN","year":"2014"},{"key":"e_1_3_2_1_11_1","volume-title":"an on-line malware detection service. https:\/\/www.virustotal.com\/","year":"2014"},{"key":"e_1_3_2_1_12_1","volume-title":"http:\/\/www.webinspector.com\/","author":"Inspector Web","year":"2014"},{"key":"e_1_3_2_1_13_1","volume-title":"Jan. 2013 to","author":"Intelligence Report Microsoft Security","year":"2013"},{"key":"e_1_3_2_1_14_1","volume-title":"Jan","year":"2015"},{"key":"e_1_3_2_1_15_1","volume-title":"Sep","year":"2014"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/1040305.1040314"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1016\/0890-5401(87)90052-6"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2009.16"},{"key":"e_1_3_2_1_19_1","volume-title":"NDSS","author":"Bayer U.","year":"2009"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/1963405.1963436"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/2338965.2336768"},{"key":"e_1_3_2_1_22_1","volume-title":"NDSS","author":"Cao Y.","year":"2012"},{"key":"e_1_3_2_1_23_1","volume-title":"USENIX Security Symposium","author":"Cho C. Y.","year":"2011"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1866307.1866355"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1287624.1287628"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772720"},{"key":"e_1_3_2_1_27_1","volume-title":"USENIX Security Symposium","author":"Curtsinger C.","year":"2011"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/2089125.2089126"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-02918-9_6"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9780511574931"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICECCS.2005.35"},{"key":"e_1_3_2_1_32_1","volume-title":"Introduction to Automata Theory, Languages, and Computation","author":"Hopcroft J. E.","year":"1979"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-73614-1_3"},{"key":"e_1_3_2_1_34_1","first-page":"652","volume-title":"Proceedings of the 22Nd USENIX Conference on Security, SEC\u201913","author":"Kapravelos A.","year":"2013"},{"key":"e_1_3_2_1_35_1","first-page":"366","volume-title":"USENIX Security Symposium","author":"Kolbitsch C.","year":"2009"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1109\/52.605929"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.5555\/2664398.2664399"},{"key":"e_1_3_2_1_38_1","first-page":"348","volume-title":"USENIX Annual Technical Conference","author":"Livshits V. B.","year":"2008"},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.5555\/1433006.1433013"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/2568225.2568302"},{"key":"e_1_3_2_1_41_1","first-page":"186","volume-title":"USENIX Security Symposium","author":"Ratanaworabhan P.","year":"2009"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920267"},{"issue":"11","key":"e_1_3_2_1_43_1","first-page":"3316","article-title":"An improved intrusion detecting method based on process profiling","volume":"43","author":"Sato I.","year":"2002","journal-title":"IPSJ Journal"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.5555\/882495.884433"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/1772690.1772784"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-73614-1_6"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/1972551.1972555"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/2714576.2714620"},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2005.39"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2013.6693101"},{"key":"e_1_3_2_1_51_1","doi-asserted-by":"publisher","DOI":"10.1145\/1858996.1859020"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1109\/MALWARE.2012.6461002"},{"key":"e_1_3_2_1_53_1","doi-asserted-by":"publisher","DOI":"10.1109\/PDCAT.2010.87"}],"event":{"name":"ISSTA '15: International Symposium on Software Testing and Analysis","location":"Baltimore MD USA","acronym":"ISSTA '15","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","SIGPLAN ACM Special Interest Group on Programming Languages"]},"container-title":["Proceedings of the 2015 International Symposium on Software Testing and Analysis"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2771783.2771814","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2771783.2771814","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T07:01:14Z","timestamp":1750230074000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2771783.2771814"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015,7,13]]},"references-count":53,"alternative-id":["10.1145\/2771783.2771814","10.1145\/2771783"],"URL":"https:\/\/doi.org\/10.1145\/2771783.2771814","relation":{},"subject":[],"published":{"date-parts":[[2015,7,13]]},"assertion":[{"value":"2015-07-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}