{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,2]],"date-time":"2026-05-02T06:51:50Z","timestamp":1777704710709,"version":"3.51.4"},"reference-count":33,"publisher":"SAGE Publications","issue":"1","license":[{"start":{"date-parts":[[2020,6,10]],"date-time":"2020-06-10T00:00:00Z","timestamp":1591747200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/journals.sagepub.com\/page\/policies\/text-and-data-mining-license"}],"content-domain":{"domain":["journals.sagepub.com"],"crossmark-restriction":true},"short-container-title":["Journal of Intelligent &amp; Fuzzy Systems"],"published-print":{"date-parts":[[2020,7,17]]},"abstract":"<jats:p>Currently, JavaScript is a popular scripting language for building web pages. It allows website creators to run any program code they want when users are visiting their websites. Meanwhile, malicious JavaScript becomes one of the biggest threats in the cyber world. Researchers are now searching for a convenient and effective way to detect JavaScript malware. Consequently, this paper aims to propose a novel method of detecting the JavaScript malware by using a high-level fuzzy Petri net (HLFPN). First, the web pages are crawled to get JavaScript files. Second, those main features are extracted from JavaScript files. In total, six main features of the JavaScript, including longest word size, entropy, specific character, commenting style, function calls, and abstract syntax tree (AST) features are collected. Finally, an HLFPN model is used to determine whether the malicious code is available or not. The experimental results have fully demonstrated the effectiveness of our proposed approach.<\/jats:p>","DOI":"10.3233\/jifs-191038","type":"journal-article","created":{"date-parts":[[2020,6,12]],"date-time":"2020-06-12T12:41:18Z","timestamp":1591965678000},"page":"249-261","update-policy":"https:\/\/doi.org\/10.1177\/sage-journals-update-policy","source":"Crossref","is-referenced-by-count":3,"title":["Novel JavaScript malware detection based on fuzzy Petri nets"],"prefix":"10.1177","volume":"39","author":[{"given":"Yi-Nan","family":"Lin","sequence":"first","affiliation":[{"name":"Department of Electronic Engineering, Ming Chi University of Technology, New Taipei, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Sheng-Kuan","family":"Wang","sequence":"additional","affiliation":[{"name":"Department of Electrical Engineering, Ming Chi University of Technology, New Taipei, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Cheng-Ying","family":"Yang","sequence":"additional","affiliation":[{"name":"Department of Computer Science, University of Taipei, Taipei, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Victor R.L.","family":"Shen","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Engineering, National Taipei University, Taiwan"},{"name":"Department of Information Management, Chaoyang University of Technology, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tony Tong-Ying","family":"Juang","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Engineering, National Taipei University, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Chin-Shan","family":"Wei","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Information Engineering, National Taipei University, Taiwan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"179","published-online":{"date-parts":[[2020,6,10]]},"reference":[{"key":"e_1_3_2_2_2","unstructured":"\u201cJavaScript \u201d Wikipedia [Online]. Available: https:\/\/en.wikipedia.org\/wiki\/JavaScript. [Accessed 28 Dec. 2017]."},{"key":"e_1_3_2_3_2","unstructured":"\u201cMicrosoft Security Intelligence Report vol. 15 \u201d Microsoft January \u2013 June 2013. [Online]. Available: https:\/\/www.microsoft.com\/en-us\/download\/details.aspx?id=40871. [Accessed 28 Dec. 2017]."},{"key":"e_1_3_2_4_2","unstructured":"\u201cAntivirus software \u201d Wikipedia [Online]. Available: https:\/\/en.wikipedia.org\/wiki\/Antivirus_software. [Accessed 28 Dec. 2017]."},{"key":"e_1_3_2_5_2","unstructured":"ZahariaA. \u201cJavaScript malware \u2013 a growing trend explained for everyday users \u201d Heimdal Security 29 Jun. 2016. [Online]. Available: https:\/\/heimdalsecurity.com\/blog\/javascript-malware-explained\/. [Accessed 20 Apr. 2018]."},{"key":"e_1_3_2_6_2","unstructured":"ZorabedianJ. \u201cHow malware works: Anatomy of a drive-by download web attack (Infographic) \u201d Sophos 26 Mar. 2014. [Online]. Available: https:\/\/news.sophos.com\/en-us\/2014\/03\/26\/how-malware-works-anatomy-of-a-drive-by-download-web-attack-infographic\/. [Accessed 20 Apr. 2018]."},{"key":"e_1_3_2_7_2","doi-asserted-by":"crossref","unstructured":"XueY. WangJ. LiuY. XiaoH. SunJ. and ChandramohanM. \u201cDetection and classification of malicious JavaScript via attack behavior modelling \u201d Procs. of the 2015 International Symposium on Software Testing and Analysis (ISSTA 2015) pp. 48\u201359 Jul. 2015.","DOI":"10.1145\/2771783.2771814"},{"key":"e_1_3_2_8_2","doi-asserted-by":"crossref","unstructured":"ChoiY.H. KimT.G. ChoiS.J. and LeeC.W. \u201cAutomatic detection for JavaScript obfuscation attacks in web pages through string pattern analysis \u201d International Conference on Future Generation Information Technology pp. 160\u2013172 2009.","DOI":"10.1007\/978-3-642-10509-8_19"},{"key":"e_1_3_2_9_2","doi-asserted-by":"publisher","DOI":"10.3233\/JIFS-169369"},{"key":"e_1_3_2_10_2","unstructured":"BenA. \u201cKNN (K-Nearest Neighbor) algorithm \u201d CSDN 25 Jul. 2017. [Online]. Available: https:\/\/blog.csdn.net\/u012897374\/article\/details\/76078387. [Accessed 28 May 2018]."},{"key":"e_1_3_2_11_2","unstructured":"VinkR. \u201cImplementing a support vector machine in scala \u201d 27 Nov. 2017. [Online]. Available: https:\/\/www.ritchievink.com\/blog\/2017\/11\/27\/implementing-a-support-vector-machine-in-scala\/. [Accessed 28 May 2018]."},{"key":"e_1_3_2_12_2","unstructured":"BlackPaul GordalIqbal and LaytonRobert \u201cA survey of similarities in banking malware behaviors \u201d Computers & Security Available online: 9 Oct. 2017."},{"key":"e_1_3_2_13_2","doi-asserted-by":"publisher","DOI":"10.1007\/s12083-017-0566-4"},{"key":"e_1_3_2_14_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2009.2034837"},{"key":"e_1_3_2_15_2","doi-asserted-by":"crossref","unstructured":"OgataH. and YanoY. \u201cKnowledge awareness map for computer-supported ubiquitous language-learning \u201d Procs. of the 2nd IEEE International Workshop on Wireless and Mobile Technologies in Education pp. 19\u201325 Mar. 2004.","DOI":"10.1109\/WMTE.2004.1281328"},{"key":"e_1_3_2_16_2","doi-asserted-by":"publisher","DOI":"10.3233\/JIFS-15982"},{"key":"e_1_3_2_17_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2012.05.030"},{"key":"e_1_3_2_18_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2018.01.012"},{"key":"e_1_3_2_19_2","doi-asserted-by":"publisher","DOI":"10.1109\/TCSS.2017.2780882"},{"key":"e_1_3_2_20_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.asoc.2014.10.028"},{"key":"e_1_3_2_21_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2006.878968"},{"key":"e_1_3_2_22_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCB.2003.810448"},{"key":"e_1_3_2_23_2","doi-asserted-by":"publisher","DOI":"10.3233\/JIFS-161498"},{"key":"e_1_3_2_24_2","doi-asserted-by":"publisher","DOI":"10.1109\/3477.865185"},{"key":"e_1_3_2_25_2","doi-asserted-by":"publisher","DOI":"10.1109\/TSMCA.2009.2038068"},{"key":"e_1_3_2_26_2","doi-asserted-by":"crossref","unstructured":"CraioveanuC. Server-side script polymorphism: Techniques of analysis and defense 2008 3rd International Conference on Malicious and Unwanted Software (MALWARE) pp. 9\u201316 Oct. 2008.","DOI":"10.1109\/MALWARE.2008.4690852"},{"key":"e_1_3_2_27_2","unstructured":"\u201cPython \u201d Python Software Foundation [Online]. Available: https:\/\/www.python.org\/. [Accessed 5 Jun. 2017]."},{"key":"e_1_3_2_28_2","unstructured":"\u201cBeautiful Soup Documentation \u201d [Online]. Available: https:\/\/www.crummy.com\/software\/BeautifulSoup\/bs4\/doc\/. [Accessed 15 Sep. 2017]."},{"key":"e_1_3_2_29_2","unstructured":"\u201cThe top 500 sites on the web \u201d Alexa Internet [Online]. Available: https:\/\/www.alexa.com\/topsites. [Accessed 16 Mar. 2018]."},{"key":"e_1_3_2_30_2","unstructured":"HynekPetrak \u201cGitHub javascript-malware-collection \u201d 8 May 2017. [Online]. Available: https:\/\/github.com\/HynekPetrak\/javascript-malware-collection. [Accessed 4 Apr. 2018]."},{"key":"e_1_3_2_31_2","unstructured":"\u201cFighting malware and cyber criminality \u201d MalwareURL Team [Online]. Available: https:\/\/www.malwareurl.com\/. [Accessed 30 Mar. 2018]."},{"key":"e_1_3_2_32_2","doi-asserted-by":"crossref","unstructured":"WangJ. XueY. LiuY. and TanT.H. JSDC: A hybrid approach for JavaScript malware detection and classification Procs. of the 10th ACM Symposium on Information Computer and Communications Security (ASIA CCS \u201915) pp. 109\u2013120 Apr. 2015.","DOI":"10.1145\/2714576.2714620"},{"key":"e_1_3_2_33_2","unstructured":"\u201cThe Python Standard Library \u201d Python Software Foundation [Online]. Available: https:\/\/docs.python.org\/3\/library\/. [Accessed 28 Mar. 2018]."},{"key":"e_1_3_2_34_2","doi-asserted-by":"publisher","DOI":"10.1016\/j.jnca.2016.08.016"}],"container-title":["Journal of Intelligent &amp; Fuzzy Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/journals.sagepub.com\/doi\/pdf\/10.3233\/JIFS-191038","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.sagepub.com\/doi\/full-xml\/10.3233\/JIFS-191038","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/journals.sagepub.com\/doi\/pdf\/10.3233\/JIFS-191038","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,4,29]],"date-time":"2026-04-29T09:41:50Z","timestamp":1777455710000},"score":1,"resource":{"primary":{"URL":"https:\/\/journals.sagepub.com\/doi\/10.3233\/JIFS-191038"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,6,10]]},"references-count":33,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2020,7,17]]}},"alternative-id":["10.3233\/JIFS-191038"],"URL":"https:\/\/doi.org\/10.3233\/jifs-191038","relation":{},"ISSN":["1064-1246","1875-8967"],"issn-type":[{"value":"1064-1246","type":"print"},{"value":"1875-8967","type":"electronic"}],"subject":[],"published":{"date-parts":[[2020,6,10]]}}}