###

计算机系统应用英文版:2021,30(8):266-273

View/Add Comment 过刊浏览高级检索 HTML

←前一篇 | 后一篇→

码上扫一扫！

下载全文

BiLSTM在JavaScript恶意代码检测中的应用

雷天翔^1,2, 万良^1,2, 于淼¹, 褚堃^1,2

(1.贵州大学计算机科学与技术学院, 贵阳 550025;2.贵州大学计算机软件与理论研究所, 贵阳 550025)

Application of BiLSTM in JavaScript Malicious Code Detection

LEI Tian-Xiang^1,2, WAN Liang^1,2, YU Miao¹, CHU Kun^1,2

(1.College of Computer Science and Technology, Guizhou University, Guiyang 550025, China;2.Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China)

摘要

图/表

参考文献

相似文献

本文已被：浏览 774次下载 1733次
Received:November 28, 2020 Revised:December 21, 2020

中文摘要: 传统的机器学习方法在检测JavaScript恶意代码时, 存在提取特征过程复杂、计算量大、代码被恶意混淆导致难以检测的问题, 不利于当前JavaScript恶意代码检测准确性和实时性的要求. 基于此, 提出一种基于双向长短时神经网络(BiLSTM)的JavaScript恶意代码检测方法. 首先, 将得到的样本数据经过代码反混淆, 数据分词, 代码向量化后得到适应于神经网络输入的标准化数据. 其次, 利用BiLSTM算法对向量化数据进行训练, 学习JavaScript恶意代码的抽象特征. 最后, 利用学习到的特征对代码进行分类. 将本文方法与深度学习方法和主流机器学习方法进行比较, 结果表明该方法具有较高的准确率和较低的误报率.

中文关键词: 恶意代码检测双向长短时神经网络 JavaScript脚本词向量

Abstract:The JavaScript malicious code detection by existing machine learning methods is complex, with large amount of calculation and difficult detection caused by maliciously confused codes. Existing approaches, therefore, fail to realize accurate and real-time detection. For this reason, a method based on Bidirectional Long Short-Term Memory (BiLSTM)-based method for JavaScript malicious code detection is proposed. Firstly, standardized data adapting to be input into the neural network is obtained by code de-obfuscation, data segmentation, and code vectorization. Secondly, the BiLSTM algorithm is used to train the vectorized data and learn the abstract features of JavaScript malicious code. Finally, the abstract features are used to assort codes. The proposed method is compared with deep learning and existing mainstream machine learning approaches, and the results show that this method exhibits a higher accuracy rate and a lower false alarm rate.

keywords: malicious code detection Bidirectional Long-Short Term Memory (BiLSTM) network JavaScript’s scripts word vector

文章编号： 中图分类号： 文献标志码：

基金项目:国家自然科学基金（62062020）

引用文本：
雷天翔,万良,于淼,褚堃.BiLSTM在JavaScript恶意代码检测中的应用.计算机系统应用,2021,30(8):266-273
LEI Tian-Xiang,WAN Liang,YU Miao,CHU Kun.Application of BiLSTM in JavaScript Malicious Code Detection.COMPUTER SYSTEMS APPLICATIONS,2021,30(8):266-273

Author Name	Affiliation	E-mail
LEI Tian-Xiang	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China
WAN Liang	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China	wanliangtr@163.com
YU Miao	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China
CHU Kun	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China

Author Name	Affiliation	E-mail
LEI Tian-Xiang	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China
WAN Liang	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China	wanliangtr@163.com
YU Miao	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China
CHU Kun	College of Computer Science and Technology, Guizhou University, Guiyang 550025, China Institute of Computer Software and Theory, Guizhou University, Guiyang 550025, China