Downloaded 12 times
Uploaded byAmol Kamble
Web attacks using obfuscated script
Code obfuscation techniques make code unintelligible or hard to understand. They are used by software companies to protect intellectual property and by malicious actors to avoid detection from antivirus software. The document discusses different obfuscation techniques like randomization, data encoding, and logic structure obfuscation. It also covers how obfuscated scripts can be used by attackers for information loss, downloading malware, or redirecting users to malicious sites. Antivirus software tries to detect obfuscated malware using techniques like signature matching, emulation, and analyzing script behavior after deobfuscation.
More Related Content
![Analyzing of Malicious JavaScript[en]](https://cdn.slidesharecdn.com/ss_thumbnails/analyzingofmaliciousjavascripten-161101042516-thumbnail.jpg?width=640&height=640&fit=bounds)
Web attacks using obfuscated script
- 1. Web Attacks using Obfuscated JavaScript Amol Kamble
- 2. “ Code obfuscationis the practice of making code unintelligible , or at the very least, hard to understand ” “General code obfuscation techniques aim to confuse the understanding of the way in which program functions.”
- 3. Who use theCode Obfuscation? code obfuscation is used to protect intellectual property by software companies. it is also used extensively by authors of malicious code to avoid detection from virus scanner.
- 4.
- 5. Different Obfuscation Techniques Randomization Obfuscation Data Obfuscation Encoding Obfuscation Logic Structure Obfuscation
- 6.
- 7.
- 8. Use of ScriptIn Web
- 9. Use of ScriptsIn Web Information Validation Event Handling Changing Web Content Dynamically Business Logic Implementation
- 10. Use of Scriptsby the Web Attacker
- 11. Use of Scriptsby the Web Attacker Information Loss Download Malicious Code Redirect to Another Malicious Website Doing something Behalf of User Calling Native Function
- 12.
- 13. How antivirus softwareworks Signature-based detection Behavioral detection String pattern Matching Emulator or Virual Browser
- 14. How antivirus Dealwith Malicious Obfuscated Script
- 15. How antivirus Dealwith Malicious Obfuscated Script Deobfuscate the Script and Check for virus Signature Don’t Allowed any Obfuscated Script
- 16. How antivirus Dealwith Malicious Obfuscated Script Run Script in Virtual Browser and Check Script Behaviour Deobfusated the Script and Check Semantics of Instrution in Script
- 17.