Detecting command injection attacks in web applications based on novel deep learning methods

Xinyu Wang
Jiqiang Zhai
Hailu Yang

Read the full article

Listed in

This article is not in any list yet, why not save it to one of your lists.

Abstract

With the continuous advancement of science and technology, while the use of the Internet has brought great convenience to people, it has also aggravated the emergence of network security problems, especially web application security. In the field of web application security, web command injection attacks pose an important security threat, with extremely high levels of harm. Attackers can cause server information leakage or even severe server paralysis by executing relevant malicious commands. As the malicious confusion and number of web application attacks gradually increase, traditional web command injection detection methods have gradually exposed many flaws. These include the model’s feature extraction process being too complex, the model’s poor recognition of malicious code, low recognition efficiency, too high a false positive rate, etc. Under the trend of increasingly serious web security problems, the emergence of artificial intelligence technology has greatly solved network security problems. Therefore, in response to the above problems, we use deep learning technology to propose a new web command injection attack detection model. By combining the relevant features of web command injection attacks, dual CNN convolution channels are used for hybrid feature extraction, the BILSTM network is used to bidirectionally identify the extracted sentence sequence features, and the attention mechanism is combined with the weight distribution of keyword features. We used our model to train and test on two data sets respectively to verify the effectiveness of our proposed feature extraction method and attention mechanism. Experimental results show that our proposed detection method achieves a precision rate of 99.3% and a recall rate of 98.2% in the actual collected dataset. We tested our model on the public HTTP CSIC 2010 dataset, and the experimental results achieved an accuracy of around 99%. Compared with other traditional detections, our proposed model can identify web command injection attacks more effectively.

Version published to 10.21203/rs.3.rs-4109164/v1 on Research Square
Jul 24, 2024

FEdroid: Lightweight and Interpretable Detection of Android Malware Using Local Key Information and Feature Selection

This article has 5 authors:
1. Hong Huang
2. Weitao Huang
3. Yinghang Zhou
4. Wengang Luo
5. Yunfei Wang
This article has no evaluationsLatest version Aug 8, 2024
Cloud Security Modeling: Using TCP Deltas with Data Analytics and Machine Learning Techniques

This article has 3 authors:
1. Mohamed Fazil Hussain
2. Salwa Sayeedul Hasan
3. Hasan Rauf
This article has no evaluationsLatest version Aug 8, 2024
Development of Anti-Malware System for Android Applications

This article has 4 authors:
1. Ahmed M. Saeed
2. Sameh A. Salem
3. Shahira M. Habashy
4. Hadeer A. Hassan
This article has no evaluationsLatest version Aug 2, 2024

Listed in

Abstract

Article activity feed

Related articles

FEdroid: Lightweight and Interpretable Detection of Android Malware Using Local Key Information and Feature Selection

Cloud Security Modeling: Using TCP Deltas with Data Analytics and Machine Learning Techniques

Development of Anti-Malware System for Android Applications