{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,6]],"date-time":"2026-06-06T05:16:29Z","timestamp":1780722989438,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":58,"publisher":"ACM","license":[{"start":{"date-parts":[[2019,12,9]],"date-time":"2019-12-09T00:00:00Z","timestamp":1575849600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"German Federal Ministry of Education and Research (BMBF)","award":["FKZ: 16KIS0345"],"award-info":[{"award-number":["FKZ: 16KIS0345"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2019,12,9]]},"DOI":"10.1145\/3359789.3359813","type":"proceedings-article","created":{"date-parts":[[2019,11,22]],"date-time":"2019-11-22T18:41:59Z","timestamp":1574448119000},"page":"257-269","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":61,"title":["JStap"],"prefix":"10.1145","author":[{"given":"Aurore","family":"Fass","sequence":"first","affiliation":[{"name":"CISPA Helmholtz Center for Information Security"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Michael","family":"Backes","sequence":"additional","affiliation":[{"name":"CISPA Helmholtz Center for Information Security"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ben","family":"Stock","sequence":"additional","affiliation":[{"name":"CISPA Helmholtz Center for Information Security"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2019,12,9]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660193.2660214"},{"key":"e_1_3_2_1_2_1","volume-title":"Atom: a hackable text editor","year":"2019","unstructured":"AtomEditor. [n.d.]. Atom: a hackable text editor for the 21st Century. In: https:\/\/atom.io. Accessed on 2019 -06-05. AtomEditor. [n.d.]. Atom: a hackable text editor for the 21st Century. In: https:\/\/atom.io. Accessed on 2019-06-05."},{"key":"e_1_3_2_1_3_1","unstructured":"Aurore54F. [n.d.]. JaSt - JS AST-Based Analysis. In: https:\/\/github.com\/Aurore54F\/JaSt. Accessed on 2019-05-24.  Aurore54F. [n.d.]. JaSt - JS AST-Based Analysis. In: https:\/\/github.com\/Aurore54F\/JaSt. Accessed on 2019-05-24."},{"key":"e_1_3_2_1_4_1","volume-title":"LUNA: Quantifying and Leveraging Uncertainty in Android Malware Analysis through Bayesian Machine Learning. In Euro S&P.","author":"Backes Michael","year":"2017","unstructured":"Michael Backes and Mohammad Nauman . 2017 . LUNA: Quantifying and Leveraging Uncertainty in Android Malware Analysis through Bayesian Machine Learning. In Euro S&P. Michael Backes and Mohammad Nauman. 2017. LUNA: Quantifying and Leveraging Uncertainty in Android Malware Analysis through Bayesian Machine Learning. In Euro S&P."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"crossref","unstructured":"Michael Backes Konrad Rieck Malte Skoruppa Ben Stock and Fabian Yamaguchi. 2017. Efficient and Flexible Discovery of PHP Application Vulnerabilities. In S&P.  Michael Backes Konrad Rieck Malte Skoruppa Ben Stock and Fabian Yamaguchi. 2017. Efficient and Flexible Discovery of PHP Application Vulnerabilities. In S&P.","DOI":"10.1109\/EuroSP.2017.14"},{"key":"e_1_3_2_1_6_1","unstructured":"Davide Balzarotti Marco Cova Christoph Karlberger Christopher Kruegel Engin Kirda and Giovanni Vigna. 2010. Efficient Detection of Split Personalities in Malware. In NDSS.  Davide Balzarotti Marco Cova Christoph Karlberger Christopher Kruegel Engin Kirda and Giovanni Vigna. 2010. Efficient Detection of Split Personalities in Malware. In NDSS."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","unstructured":"Michael Brengel Michael Backes and Christian Rossow. 2016. Detecting Hardware-Assisted Virtualization. In DIMVA.  Michael Brengel Michael Backes and Christian Rossow. 2016. Detecting Hardware-Assisted Virtualization. In DIMVA.","DOI":"10.1007\/978-3-319-40667-1_11"},{"key":"e_1_3_2_1_8_1","unstructured":"BSI. [n.d.]. German Federal Office for Information Security (BSI). In: https:\/\/www.bsi.bund.de\/EN. Accessed on 2019-07-18.  BSI. [n.d.]. German Federal Office for Information Security (BSI). In: https:\/\/www.bsi.bund.de\/EN. Accessed on 2019-07-18."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1963405.1963436"},{"key":"e_1_3_2_1_10_1","unstructured":"The SciPy community. [n.d.]. scipy.sparse.csr_matrix. In: https:\/\/docs.scipy.org\/doc\/scipy\/reference\/generated\/scipy.sparse.csr_matrix.html#scipy.sparse.csr_matrix. Accessed on 2019-06-05.  The SciPy community. [n.d.]. scipy.sparse.csr_matrix. In: https:\/\/docs.scipy.org\/doc\/scipy\/reference\/generated\/scipy.sparse.csr_matrix.html#scipy.sparse.csr_matrix. Accessed on 2019-06-05."},{"key":"e_1_3_2_1_11_1","volume-title":"Detection and Analysis of Drive-by-download Attacks and Malicious JavaScript Code. In International Conference on World Wide Web (WWW).","author":"Cova Marco","year":"2010","unstructured":"Marco Cova , Christopher Kruegel , and Giovanni Vigna . 2010 . Detection and Analysis of Drive-by-download Attacks and Malicious JavaScript Code. In International Conference on World Wide Web (WWW). Marco Cova, Christopher Kruegel, and Giovanni Vigna. 2010. Detection and Analysis of Drive-by-download Attacks and Malicious JavaScript Code. In International Conference on World Wide Web (WWW)."},{"key":"e_1_3_2_1_12_1","volume-title":"Zozzle: Fast and Precise In-Browser JavaScript Malware Detection. In USENIX Security.","author":"Curtsinger Charlie","year":"2011","unstructured":"Charlie Curtsinger , Benjamin Livshits , Benjamin Zorn , and Christian Seifert . 2011 . Zozzle: Fast and Precise In-Browser JavaScript Malware Detection. In USENIX Security. Charlie Curtsinger, Benjamin Livshits, Benjamin Zorn, and Christian Seifert. 2011. Zozzle: Fast and Precise In-Browser JavaScript Malware Detection. In USENIX Security."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"crossref","unstructured":"Hung Dang Yue Huang and Ee-Chien Chang. 2017. Evading Classifiers by Morphing in the Dark. In CCS.  Hung Dang Yue Huang and Ee-Chien Chang. 2017. Evading Classifiers by Morphing in the Dark. In CCS.","DOI":"10.1145\/3133956.3133978"},{"key":"e_1_3_2_1_14_1","volume-title":"ACM Symposium on Applied Computing (SAC).","author":"Dewald Andreas","unstructured":"Andreas Dewald , Thorsten Holz , and Felix C. Freiling . 2010. ADSandbox: Sandboxing JavaScript to Fight Malicious Websites . In ACM Symposium on Applied Computing (SAC). Andreas Dewald, Thorsten Holz, and Felix C. Freiling. 2010. ADSandbox: Sandboxing JavaScript to Fight Malicious Websites. In ACM Symposium on Applied Computing (SAC)."},{"key":"e_1_3_2_1_15_1","volume-title":"ECMAScript 2018 Language Specification (ECMA-262","author":"International Ecma","year":"2018","unstructured":"Ecma International . [n.d.]. ECMAScript 2018 Language Specification (ECMA-262 , 9 th edition, June 2018 ). In: https:\/\/www.ecma-international.org\/ecma-262\/9.0. Accessed on 2019-06-04. Ecma International. [n.d.]. ECMAScript 2018 Language Specification (ECMA-262, 9th edition, June 2018). In: https:\/\/www.ecma-international.org\/ecma-262\/9.0. Accessed on 2019-06-04.","edition":"9"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"Aurore Fass Michael Backes and Ben Stock. 2019. HideNoSeek: Camouflaging Malicious JavaScript in Benign ASTs. In CCS.  Aurore Fass Michael Backes and Ben Stock. 2019. HideNoSeek: Camouflaging Malicious JavaScript in Benign ASTs. In CCS.","DOI":"10.1145\/3319535.3345656"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"crossref","unstructured":"Aurore Fass Robert P. Krawczyk Michael Backes and Ben Stock. 2018. JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript. In DIMVA.  Aurore Fass Robert P. Krawczyk Michael Backes and Ben Stock. 2018. JaSt: Fully Syntactic Detection of Malicious (Obfuscated) JavaScript. In DIMVA.","DOI":"10.1007\/978-3-319-93411-2_14"},{"key":"e_1_3_2_1_18_1","unstructured":"Tom Fawcett. 2006. An Introduction to ROC Analysis. Pattern Recogn. Lett. (2006).  Tom Fawcett. 2006. An Introduction to ROC Analysis. Pattern Recogn. Lett. (2006)."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/2509136.2509520"},{"key":"e_1_3_2_1_20_1","volume-title":"Warren","author":"Ferrante Jeanne","year":"1987","unstructured":"Jeanne Ferrante , Karl J. Ottenstein , and Joe D . Warren . 1987 . The Program Dependence Graph and Its Use in Optimization. ACM Transactions on Programming Languages and Systems (TOPLAS) ( 1987). Jeanne Ferrante, Karl J. Ottenstein, and Joe D. Warren. 1987. The Program Dependence Graph and Its Use in Optimization. ACM Transactions on Programming Languages and Systems (TOPLAS) (1987)."},{"key":"e_1_3_2_1_21_1","unstructured":"GeeksOnSecurity. [n.d.]. Malicious Javascript Dataset. In: https:\/\/github.com\/geeksonsecurity\/js-malicious-dataset. Accessed on 2019-04-22.  GeeksOnSecurity. [n.d.]. Malicious Javascript Dataset. In: https:\/\/github.com\/geeksonsecurity\/js-malicious-dataset. Accessed on 2019-04-22."},{"key":"e_1_3_2_1_22_1","volume-title":"Adversarial Perturbations Against Deep Neural Networks for Malware Classification. In European Symposium on Research in Computer Security.","author":"Grosse Kathrin","year":"2017","unstructured":"Kathrin Grosse , Nicolas Papernot , Praveen Manoharan , Michael Backes , and Patrick McDaniel . 2017 . Adversarial Perturbations Against Deep Neural Networks for Malware Classification. In European Symposium on Research in Computer Security. Kathrin Grosse, Nicolas Papernot, Praveen Manoharan, Michael Backes, and Patrick McDaniel. 2017. Adversarial Perturbations Against Deep Neural Networks for Malware Classification. In European Symposium on Research in Computer Security."},{"key":"e_1_3_2_1_23_1","unstructured":"Ariya Hidayat. [n.d.]. ECMAScript Parsing Infrastructure for Multipurpose Analysis. In: http:\/\/esprima.org. Accessed on 2019-06-04.  Ariya Hidayat. [n.d.]. ECMAScript Parsing Infrastructure for Multipurpose Analysis. In: http:\/\/esprima.org. Accessed on 2019-06-04."},{"key":"e_1_3_2_1_24_1","volume-title":"Christopher Kruegel, and Giovanni Vigna.","author":"Invernizzi Luca","year":"2012","unstructured":"Luca Invernizzi , Stefano Benvenuti , Marco Cova , Paolo Milani Comparetti , Christopher Kruegel, and Giovanni Vigna. 2012 . EvilSeed: A Guided Approach to Finding Malicious Web Pages. In S &P. Luca Invernizzi, Stefano Benvenuti, Marco Cova, Paolo Milani Comparetti, Christopher Kruegel, and Giovanni Vigna. 2012. EvilSeed: A Guided Approach to Finding Malicious Web Pages. In S&P."},{"key":"e_1_3_2_1_25_1","volume-title":"Remedying the Eval That Men Do. In International Symposium on Software Testing and Analysis (ISSTA).","author":"Jensen Simon Holm","year":"2012","unstructured":"Simon Holm Jensen , Peter A. Jonsson , and Anders M\u00f8ller . 2012 . Remedying the Eval That Men Do. In International Symposium on Software Testing and Analysis (ISSTA). Simon Holm Jensen, Peter A. Jonsson, and Anders M\u00f8ller. 2012. Remedying the Eval That Men Do. In International Symposium on Software Testing and Analysis (ISSTA)."},{"key":"e_1_3_2_1_26_1","volume-title":"Type Analysis for JavaScript. In International Symposium on Static Analysis (SAS).","author":"Jensen Simon Holm","year":"2009","unstructured":"Simon Holm Jensen , Anders M\u00f8ller , and Peter Thiemann . 2009 . Type Analysis for JavaScript. In International Symposium on Static Analysis (SAS). Simon Holm Jensen, Anders M\u00f8ller, and Peter Thiemann. 2009. Type Analysis for JavaScript. In International Symposium on Static Analysis (SAS)."},{"key":"e_1_3_2_1_27_1","unstructured":"Kafeine. [n.d.]. MDNC - Malware don't need coffee. In: https:\/\/malware.dontneedcoffee.com. Accessed on 2019-04-22.  Kafeine. [n.d.]. MDNC - Malware don't need coffee. In: https:\/\/malware.dontneedcoffee.com. Accessed on 2019-04-22."},{"key":"e_1_3_2_1_28_1","volume-title":"Revolver: An Automated Approach to the Detection of Evasive Web-based Malware. In USENIX Security.","author":"Kapravelos Alexandros","year":"2013","unstructured":"Alexandros Kapravelos , Yan Shoshitaishvili , Marco Cova , and Christopher Kr\u00fcgel and Giovanni Vigna . 2013 . Revolver: An Automated Approach to the Detection of Evasive Web-based Malware. In USENIX Security. Alexandros Kapravelos, Yan Shoshitaishvili, Marco Cova, and Christopher Kr\u00fcgel and Giovanni Vigna. 2013. Revolver: An Automated Approach to the Detection of Evasive Web-based Malware. In USENIX Security."},{"key":"e_1_3_2_1_29_1","unstructured":"Debabrata Kar Suvasini Panigrahi and Srikanth Sundararajan. 2016. SQLiGot: Detecting SQL Injections Attacks using Graph of Tokens and SVM. In Computers & Security.  Debabrata Kar Suvasini Panigrahi and Srikanth Sundararajan. 2016. SQLiGot: Detecting SQL Injections Attacks using Graph of Tokens and SVM. In Computers & Security."},{"key":"e_1_3_2_1_30_1","volume-title":"Yonghwi Kwon, Yunhui Zheng, Xiangyu Zhang, and Dongyan Xu.","author":"Kim Kyungtae","year":"2017","unstructured":"Kyungtae Kim , I Luk Kim , Chung Hwan Kim , Yonghwi Kwon, Yunhui Zheng, Xiangyu Zhang, and Dongyan Xu. 2017 . J-Force: Forced Execution on JavaScript. In WWW. Kyungtae Kim, I Luk Kim, Chung Hwan Kim, Yonghwi Kwon, Yunhui Zheng, Xiangyu Zhang, and Dongyan Xu. 2017. J-Force: Forced Execution on JavaScript. In WWW."},{"key":"e_1_3_2_1_31_1","volume-title":"Rozzle: De-cloaking Internet Malware. In S&P.","author":"Kolbitsch Clemens","year":"2012","unstructured":"Clemens Kolbitsch , Benjamin Livshits , Benjamin Zorn , and Christian Seifert . 2012 . Rozzle: De-cloaking Internet Malware. In S&P. Clemens Kolbitsch, Benjamin Livshits, Benjamin Zorn, and Christian Seifert. 2012. Rozzle: De-cloaking Internet Malware. In S&P."},{"key":"e_1_3_2_1_32_1","volume-title":"Maloof","author":"Zico Kolter J.","year":"2006","unstructured":"J. Zico Kolter and Marcus A . Maloof . 2006 . Learning to Detect and Classify Malicious Executables in the Wild. In Journal of Machine Learning Research . J. Zico Kolter and Marcus A. Maloof. 2006. Learning to Detect and Classify Malicious Executables in the Wild. In Journal of Machine Learning Research."},{"key":"e_1_3_2_1_33_1","unstructured":"Radhesh Krishnan Konoth Emanuele Vineti Veelasha Moonsamy Martina Lindorfer Christopher Kruegel Herbert Bos and Giovanni Vigna. 2018. MineSweeper: An In-depth Look into Drive-by Cryptocurrency Mining and Its Defense. In CSS.  Radhesh Krishnan Konoth Emanuele Vineti Veelasha Moonsamy Martina Lindorfer Christopher Kruegel Herbert Bos and Giovanni Vigna. 2018. MineSweeper: An In-depth Look into Drive-by Cryptocurrency Mining and Its Defense. In CSS."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"crossref","unstructured":"Pavel Laskov and Nedim \u0160rndi\u0107. 2011. Static Detection of Malicious JavaScript-Bearing PDF Documents. In ACSAC.  Pavel Laskov and Nedim \u0160rndi\u0107. 2011. Static Detection of Malicious JavaScript-Bearing PDF Documents. In ACSAC.","DOI":"10.1145\/2076732.2076785"},{"key":"e_1_3_2_1_35_1","volume-title":"Samaneh Tajalizadehkhoob, Maciej Korczy\u0144ski, and Wouter Joosen.","author":"Pochat Victor Le","year":"2019","unstructured":"Victor Le Pochat , Tom Van Goethem , Samaneh Tajalizadehkhoob, Maciej Korczy\u0144ski, and Wouter Joosen. 2019 . Tranco : A Research-Oriented Top Sites Ranking Hardened Against Manipulation. In NDSS. Victor Le Pochat, Tom Van Goethem, Samaneh Tajalizadehkhoob, Maciej Korczy\u0144ski, and Wouter Joosen. 2019. Tranco: A Research-Oriented Top Sites Ranking Hardened Against Manipulation. In NDSS."},{"key":"e_1_3_2_1_36_1","volume-title":"Obfuscated Malicious JavaScript Detection Using Classification Techniques. In International Conference on Malicious and Unwanted Software (MALWARE).","author":"Likarish Peter","year":"2009","unstructured":"Peter Likarish , Eunjin Jung , and Insoon Jo . 2009 . Obfuscated Malicious JavaScript Detection Using Classification Techniques. In International Conference on Malicious and Unwanted Software (MALWARE). Peter Likarish, Eunjin Jung, and Insoon Jo. 2009. Obfuscated Malicious JavaScript Detection Using Classification Techniques. In International Conference on Malicious and Unwanted Software (MALWARE)."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"crossref","unstructured":"Davide Maiorca Igino Corona and Giorgio Giacinto. 2013. Looking at the Bag is Not Enough to Find the Bomb: An Evasion of Structural Methods for Malicious PDF Files Detection. In ASIACCS.  Davide Maiorca Igino Corona and Giorgio Giacinto. 2013. Looking at the Bag is Not Enough to Find the Bomb: An Evasion of Structural Methods for Malicious PDF Files Detection. In ASIACCS.","DOI":"10.1145\/2484313.2484327"},{"key":"e_1_3_2_1_38_1","unstructured":"Mozilla Developer Network. [n.d.]. Inheritance and the prototype chain. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Inheritance_and_the_prototype_chain. Accessed on 2019-06-04.  Mozilla Developer Network. [n.d.]. Inheritance and the prototype chain. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Inheritance_and_the_prototype_chain. Accessed on 2019-06-04."},{"key":"e_1_3_2_1_39_1","unstructured":"Mozilla Developer Network. [n.d.]. JavaScript Conditional Compilation: cc_on. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Microsoft_Extensions\/at-cc-on. Accessed on 2019-06-04.  Mozilla Developer Network. [n.d.]. JavaScript Conditional Compilation: cc_on. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Web\/JavaScript\/Microsoft_Extensions\/at-cc-on. Accessed on 2019-06-04."},{"key":"e_1_3_2_1_40_1","unstructured":"Mozilla Developer Network. [n.d.]. SpiderMonkey. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Mozilla\/Projects\/SpiderMonkey. Accessed on 2019-09-10.  Mozilla Developer Network. [n.d.]. SpiderMonkey. In: https:\/\/developer.mozilla.org\/en-US\/docs\/Mozilla\/Projects\/SpiderMonkey. Accessed on 2019-09-10."},{"key":"e_1_3_2_1_41_1","unstructured":"Patricio Palladino. [n.d.]. Non alphanumeric JavaScript. In: http:\/\/patriciopalladino.com\/blog\/2012\/08\/09\/non-alphanumeric-javascript.html. Accessed on 2019-06-10.  Patricio Palladino. [n.d.]. Non alphanumeric JavaScript. In: http:\/\/patriciopalladino.com\/blog\/2012\/08\/09\/non-alphanumeric-javascript.html. Accessed on 2019-06-10."},{"key":"e_1_3_2_1_42_1","volume-title":"USENIX Security Symposium.","author":"Pendlebury Feargus","year":"2019","unstructured":"Feargus Pendlebury , Fabio Pierazzi , Roberto Jordaney , Johannes Kinder , and Lorenzo Cavallaro . 2019 . TESSERACT: Eliminating Experimental Bias in Malware Classification across Space and Time . In USENIX Security Symposium. Feargus Pendlebury, Fabio Pierazzi, Roberto Jordaney, Johannes Kinder, and Lorenzo Cavallaro. 2019. TESSERACT: Eliminating Experimental Bias in Malware Classification across Space and Time. In USENIX Security Symposium."},{"key":"e_1_3_2_1_43_1","unstructured":"Hynek Petrak. [n.d.]. Javascript Malware Collection. In: https:\/\/github.com\/HynekPetrak\/javascript-malware-collection. Accessed on 2019-04-22.  Hynek Petrak. [n.d.]. Javascript Malware Collection. In: https:\/\/github.com\/HynekPetrak\/javascript-malware-collection. Accessed on 2019-04-22."},{"key":"e_1_3_2_1_44_1","unstructured":"Konrad Rieck. [n.d.]. Jassi: A Simple and Robust JavaScript Lexer. In: https:\/\/github.com\/rieck\/jassi. Accessed on 2019-05-24.  Konrad Rieck. [n.d.]. Jassi: A Simple and Robust JavaScript Lexer. In: https:\/\/github.com\/rieck\/jassi. Accessed on 2019-05-24."},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920267"},{"key":"e_1_3_2_1_46_1","unstructured":"scikit-learn developers. [n.d.]. Scikit-learn: HashingVectorizer. In: https:\/\/scikit-learn.org\/stable\/modules\/generated\/sklearn.feature_extraction.text.HashingVectorizer.html. Accessed on 2019-06-05.  scikit-learn developers. [n.d.]. Scikit-learn: HashingVectorizer. In: https:\/\/scikit-learn.org\/stable\/modules\/generated\/sklearn.feature_extraction.text.HashingVectorizer.html. Accessed on 2019-06-05."},{"key":"e_1_3_2_1_47_1","unstructured":"scikit-learn developers. [n.d.]. sklearn.ensemble.RandomForestClassifier. In: https:\/\/scikit-learn.org\/stable\/modules\/generated\/sklearn.ensemble.RandomForestClassifier.html#sklearn.ensemble.RandomForestClassifier.feature_importances_. Accessed on 2019-06-12.  scikit-learn developers. [n.d.]. sklearn.ensemble.RandomForestClassifier. In: https:\/\/scikit-learn.org\/stable\/modules\/generated\/sklearn.ensemble.RandomForestClassifier.html#sklearn.ensemble.RandomForestClassifier.feature_importances_. Accessed on 2019-06-12."},{"key":"e_1_3_2_1_48_1","volume-title":"Studying Minified and Obfuscated Code in the Web. In The World Wide Web Conference (WWW).","author":"Skolka Philippe","year":"2019","unstructured":"Philippe Skolka , Cristian-Alexandru Staicu , and Michael Pradel . 2019 . Anything to Hide? Studying Minified and Obfuscated Code in the Web. In The World Wide Web Conference (WWW). Philippe Skolka, Cristian-Alexandru Staicu, and Michael Pradel. 2019. Anything to Hide? Studying Minified and Obfuscated Code in the Web. In The World Wide Web Conference (WWW)."},{"key":"e_1_3_2_1_49_1","volume-title":"Kizzle: A Signature Compiler for Detecting Exploit Kits. In Dependable Systems and Networks (DSN).","author":"Stock Ben","year":"2016","unstructured":"Ben Stock , Benjamin Livshits , and Benjamin Zorn . 2016 . Kizzle: A Signature Compiler for Detecting Exploit Kits. In Dependable Systems and Networks (DSN). Ben Stock, Benjamin Livshits, and Benjamin Zorn. 2016. Kizzle: A Signature Compiler for Detecting Exploit Kits. In Dependable Systems and Networks (DSN)."},{"key":"e_1_3_2_1_50_1","unstructured":"VirusTotal. [n.d.]. VirusTotal - Analyze suspicious files and URLs to detect types of malware automatically share them with the security community. In: https:\/\/www.virustotal.com. Accessed on 2019-04-22.  VirusTotal. [n.d.]. VirusTotal - Analyze suspicious files and URLs to detect types of malware automatically share them with the security community. In: https:\/\/www.virustotal.com. Accessed on 2019-04-22."},{"key":"e_1_3_2_1_51_1","unstructured":"Nedim \u0160rndi\u0107 and Pavel Laskov. 2013. Detection of Malicious PDF Files Based on Hierarchical Document Structure. In NDSS.  Nedim \u0160rndi\u0107 and Pavel Laskov. 2013. Detection of Malicious PDF Files Based on Hierarchical Document Structure. In NDSS."},{"key":"e_1_3_2_1_52_1","volume-title":"Hilferty","author":"Wilson Edwin B.","year":"1931","unstructured":"Edwin B. Wilson and Margaret M . Hilferty . 1931 . The Distribution of Chi-Squared. National Academy of Sciences of the United States of America (1931). Edwin B. Wilson and Margaret M. Hilferty. 1931. The Distribution of Chi-Squared. National Academy of Sciences of the United States of America (1931)."},{"key":"e_1_3_2_1_53_1","volume":"201","author":"Wisse Wilco","unstructured":"Wilco Wisse and Cor J. Veenman. 201 5. Scripting DNA: Identifying the JavaScript Programmer. In Digital Investigation. Wilco Wisse and Cor J. Veenman. 2015. Scripting DNA: Identifying the JavaScript Programmer. In Digital Investigation.","journal-title":"Cor J. Veenman."},{"key":"e_1_3_2_1_54_1","volume-title":"Classification. In ACM workshop on Artificial intelligence and security (AISec).","author":"Wressnegger Christian","year":"2013","unstructured":"Christian Wressnegger , Guido Schwenk , Daniel Arp , and Konrad Rieck . 2013 . A Close Look on n-Grams in Intrusion Detection: Anomaly Detection vs . Classification. In ACM workshop on Artificial intelligence and security (AISec). Christian Wressnegger, Guido Schwenk, Daniel Arp, and Konrad Rieck. 2013. A Close Look on n-Grams in Intrusion Detection: Anomaly Detection vs. Classification. In ACM workshop on Artificial intelligence and security (AISec)."},{"key":"e_1_3_2_1_55_1","unstructured":"Weilin Xu Yanjun Qi and David Evans. 2016. Automatically Evading Classifiers: A Case Study on PDF Malware Classifiers. In NDSS.  Weilin Xu Yanjun Qi and David Evans. 2016. Automatically Evading Classifiers: A Case Study on PDF Malware Classifiers. In NDSS."},{"key":"e_1_3_2_1_56_1","volume-title":"The Power of Obfuscation Techniques in Malicious JavaScript Code: A Measurement Study. In International Conference on Malicious and Unwanted Software (MALWARE).","author":"Xu Wei","year":"2012","unstructured":"Wei Xu , Fangfang Zhang , and Sencun Zhu . 2012 . The Power of Obfuscation Techniques in Malicious JavaScript Code: A Measurement Study. In International Conference on Malicious and Unwanted Software (MALWARE). Wei Xu, Fangfang Zhang, and Sencun Zhu. 2012. The Power of Obfuscation Techniques in Malicious JavaScript Code: A Measurement Study. In International Conference on Malicious and Unwanted Software (MALWARE)."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"crossref","unstructured":"Fabian Yamaguchi Nico Golde Daniel Arp and Konrad Rieck. 2014. Modeling and Discovering Vulnerabilities with Code Property Graphs. In S&P.  Fabian Yamaguchi Nico Golde Daniel Arp and Konrad Rieck. 2014. Modeling and Discovering Vulnerabilities with Code Property Graphs. In S&P.","DOI":"10.1109\/SP.2014.44"},{"key":"e_1_3_2_1_58_1","doi-asserted-by":"crossref","unstructured":"Fabian Yamaguchi Markus Lottmann and Konrad Rieck. 2012. Generalized Vulnerability Extrapolation Using Abstract Syntax Trees. In ACSAC.  Fabian Yamaguchi Markus Lottmann and Konrad Rieck. 2012. Generalized Vulnerability Extrapolation Using Abstract Syntax Trees. In ACSAC.","DOI":"10.1145\/2420950.2421003"}],"event":{"name":"ACSAC '19: 2019 Annual Computer Security Applications Conference","location":"San Juan Puerto Rico USA","acronym":"ACSAC '19"},"container-title":["Proceedings of the 35th Annual Computer Security Applications Conference"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3359789.3359813","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3359789.3359813","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T23:45:04Z","timestamp":1750203904000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3359789.3359813"}},"subtitle":["a static pre-filter for malicious JavaScript detection"],"short-title":[],"issued":{"date-parts":[[2019,12,9]]},"references-count":58,"alternative-id":["10.1145\/3359789.3359813","10.1145\/3359789"],"URL":"https:\/\/doi.org\/10.1145\/3359789.3359813","relation":{},"subject":[],"published":{"date-parts":[[2019,12,9]]},"assertion":[{"value":"2019-12-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}