Detection and Analysis of Drive-by Downloads and Malicious Websites

Author First name, Last name, Institution

Saeed Ibrahim, Zayed University
Nawwaf Al Herami, Zayed University
Ebrahim Al Naqbi, Zayed University
Monther Aldwairi, Zayed UniversityFollow

Document Type

Conference Proceeding

Source of Publication

Communications in Computer and Information Science

Publication Date

1-1-2020

Abstract

© Springer Nature Singapore Pte Ltd. 2020. A drive-by download is a download that occurs without user’s action or knowledge. It usually triggers an exploit of vulnerability in a browser to downloads an unknown file. The malicious program in the downloaded file installs itself on the victim’s machine. Moreover, the downloaded file can be camouflaged as an installer that would further install malicious software. Drive-by downloads is a very good example of the exponential increase in malicious activity over the Internet and how it affects the daily use of the web. In this paper, we try to address the problem caused by drive-by downloads from different standpoints. We provide in-depth understanding of the difficulties in dealing with drive-by downloads and suggest appropriate solutions. We propose machine learning and feature selection solutions to remedy the drive-by download problem. Experimental results reported 98.2% precision, 98.2% F-Measure and 97.2% ROC area.

DOI Link

10.1007/978-981-15-4825-3_6

ISBN

9789811548246

ISSN

1865-0929

Publisher

Springer

Volume

1208 CCIS

First Page

72

Last Page

86

Disciplines

Business

Keywords

Drive by download, Malware detection, Web security

Scopus ID

85084838521

Recommended Citation

Ibrahim, Saeed; Herami, Nawwaf Al; Naqbi, Ebrahim Al; and Aldwairi, Monther, "Detection and Analysis of Drive-by Downloads and Malicious Websites" (2020). All Works. 1218.
https://zuscholars.zu.ac.ae/works/1218

Indexed in Scopus

yes

Open Access

yes

Open Access Type

Green: A manuscript of this publication is openly available in a repository