IceShield: Detection and Mitigation of Malicious Websites with a Frozen DOM

@inproceedings{Heiderich2011IceShieldDA,
  title={IceShield: Detection and Mitigation of Malicious Websites with a Frozen DOM},
  author={Mario Heiderich and Tilman Frosch and Thorsten Holz},
  booktitle={RAID},
  year={2011}
}
Due to its flexibility and dynamic character, JavaScript has become an important tool for attackers. The widespread scripting language often helps them to perform a broad variety of malicious activities, for example to initiate drive-by download exploits or to execute clickjacking attacks. Current defense mechanisms as well as reactive analysis and forensic approaches are often slow or complicated to set up and conduct since an attacker can use many different ways to obfuscate the code or make… CONTINUE READING
Highly Cited
This paper has 43 citations. REVIEW CITATIONS
27 Citations
26 References
Similar Papers

Citations

Publications citing this paper.
Showing 1-10 of 27 extracted citations

References

Publications referenced by this paper.
Showing 1-10 of 26 references

Aspect-Oriented programming (2010) http://msdn.microsoft.com/ en-us/library/aa288717(VS.71).aspx

  • M. Deiters
  • 2010
1 Excerpt

New insights into clickjacking

  • M. Balduzzi
  • OWASP AppSec Research.
  • 2010
1 Excerpt

Bug 29278 XSSAuditor bypasses from sla.ckers.org (2009) https: //bugs.webkit.org/show_bug.cgi?id=29278

  • A. Barth
  • 2009
1 Excerpt

Drive-by downloads

  • R. Naraine
  • the web under siege - securelist
  • 2009
1 Excerpt

Examining and bypassing the IE8 XSS filter (2009) http: //www.slideshare.net/kuza55/examining-the-ie8-xss-filter

  • A. Kouzemchenko
  • 2009
1 Excerpt

Similar Papers

Loading similar papers…