49 search results - page 1 / 10 » Securing web application code by static analysis and runtime... |
WWW
2004
ACM
14 years 5 months ago
2004
ACM
Security remains a major roadblock to universal acceptance of the Web for many kinds of transactions, especially since the recent sharp increase in remotely exploitable vulnerabil...
WWW
2008
ACM
14 years 5 months ago
2008
ACM
We propose STILL, a signature-free remote exploit binary code injection attack blocker to protect web servers and web applications. STILL is robust to almost all anti-signature, a...
NDSS
2007
IEEE
13 years 11 months ago
2007
IEEE
Cross-site scripting (XSS) is an attack against web applications in which scripting code is injected into the output of an application that is then sent to a user’s web browser....
ACSAC
2010
IEEE
13 years 2 months ago
2010
IEEE
The JavaScript language is a core component of active and dynamic web content in the Internet today. Besides its great success in enhancing web applications, however, JavaScript p...
WORM
2003
13 years 6 months ago
2003
This paper presents DOME, a host-based technique for detecting several general classes of malicious code in software executables. DOME uses static analysis to identify the locatio...