English
Related papers

Related papers: ModSec-Learn: Boosting ModSecurity with Machine Le…

200 papers

Many Web Application Firewalls (WAFs) leverage the OWASP CRS to block incoming malicious requests. The CRS consists of different sets of rules designed by domain experts to detect well-known web attack patterns. Both the set of rules and…

Web applications are permanently being exposed to attacks that exploit their vulnerabilities. In this work we investigate the application of machine learning techniques to leverage Web Application Firewall (WAF), a technology that is used…

Cryptography and Security · Computer Science 2018-03-16 Gustavo Betarte , Eduardo Giménez , Rodrigo Martínez , Álvaro Pardo

This article puts forward the use of mutual information values to replicate the expertise of security professionals in selecting features for detecting web attacks. The goal is to enhance the effectiveness of web application firewalls…

Cryptography and Security · Computer Science 2024-07-29 Amanda Riverol , Gustavo Betarte , Rodrigo Martínez , Álvaro Pardo

Web applications increasingly face evasive and polymorphic attack payloads, yet traditional web application firewalls (WAFs) based on static rule sets such as the OWASP Core Rule Set (CRS) often miss obfuscated or zero-day patterns without…

Cryptography and Security · Computer Science 2026-01-15 Heba Osama , Omar Elebiary , Youssef Qassim , Mohamed Amgad , Ahmed Maghawry , Ahmed Saafan , Haitham Ghalwash

Detection and mitigation of critical web vulnerabilities and attacks like cross-site scripting (XSS), and cross-site request forgery (CSRF) have been a great concern in the field of web security. Such web attacks are evolving and becoming…

Cryptography and Security · Computer Science 2023-05-01 Mahnoor Shahid

The growing cybersecurity threats make it essential to use high-quality data to train Machine Learning (ML) models for network traffic analysis, without noisy or missing data. By selecting the most relevant features for cyber-attack…

Cryptography and Security · Computer Science 2024-07-09 João Vitorino , Miguel Silva , Eva Maia , Isabel Praça

Web application firewall (WAF) examines malicious traffic to and from a web application via a set of security rules. It plays a significant role in securing Web applications against web attacks. However, as web attacks grow in…

Cryptography and Security · Computer Science 2025-01-27 Cong Wu , Jing Chen , Simeng Zhu , Wenqi Feng , Ruiying Du , Yang Xiang

Due to the increasing sophistication of web attacks, Web Application Firewalls (WAFs) have to be tested and updated regularly to resist the relentless flow of web attacks. In practice, using a brute-force attack to discover vulnerabilities…

Cryptography and Security · Computer Science 2023-12-14 Mohammadhossein Amouei , Mohsen Rezvani , Mansoor Fateh

Web Application Firewalls (WAFs) have been introduced as essential and popular security gates that inspect incoming HTTP traffic to filter out malicious requests and provide defenses against a diverse array of web-based threats. Evading…

Cryptography and Security · Computer Science 2026-03-17 Seyed Ali Akhavani , Bahruz Jabiyev , Ben Kallus , Cem Topcuoglu , Sergey Bratus , Engin Kirda

Cybersecurity attacks are growing both in frequency and sophistication over the years. This increasing sophistication and complexity call for more advancement and continuous innovation in defensive strategies. Traditional methods of…

Machine Learning · Computer Science 2020-01-20 Antoine Delplace , Sheryl Hermoso , Kristofer Anandita

Web Application Firewalls are crucial for protecting web applications against a wide range of cyber threats. Traditional Web Application Firewalls often struggle to effectively distinguish between malicious and legitimate traffic, leading…

Cryptography and Security · Computer Science 2025-11-18 Ahmed Sameh , Sahar Selim

The emerging wide area monitoring systems (WAMS) have brought significant improvements in electric grids' situational awareness. However, the newly introduced system can potentially increase the risk of cyber-attacks, which may be disguised…

Cryptography and Security · Computer Science 2021-08-26 Gabriel Intriago , Yu Zhang

While recent code-specific large language models (LLMs) have greatly enhanced their code generation capabilities, the safety of these models remains under-explored, posing potential risks as insecure code generated by these models may…

Cryptography and Security · Computer Science 2025-06-09 Xiangzhe Xu , Zian Su , Jinyao Guo , Kaiyuan Zhang , Zhenting Wang , Xiangyu Zhang

Instruction fine-tuning has emerged as a critical technique for customizing Large Language Models (LLMs) to specific applications. However, recent studies have highlighted significant security vulnerabilities in fine-tuned LLMs. Existing…

Computation and Language · Computer Science 2025-02-18 Yanrui Du , Sendong Zhao , Jiawei Cao , Ming Ma , Danyang Zhao , Shuren Qi , Fenglei Fan , Ting Liu , Bing Qin

Webshell attacks are becoming more common, requiring robust detection mechanisms to protect web applications. The dissertation clearly states two research directions: scanning web application source code and analyzing HTTP traffic to detect…

Cryptography and Security · Computer Science 2024-12-10 Ha L. Viet , On V. Phung , Hoa N. Nguyen

Modern overlay security mechanisms like Web Application Firewalls (WAF) suffer from inability to recognize custom high-level application logic and data objects, which results in low accuracy, high false positives rates, and overhelming…

Cryptography and Security · Computer Science 2015-11-10 George Noseevich , Dennis Gamayunov

The increasing reliance on web services has led to a rise in cybersecurity threats, particularly Cross-Site Scripting (XSS) attacks, which target client-side layers of web applications by injecting malicious scripts. Traditional Web…

Cryptography and Security · Computer Science 2025-04-14 Vahid Babaey , Arun Ravindran

Security is a major concern for organizations who wish to leverage cloud computing. In order to reduce security vulnerabilities, public cloud providers offer firewall functionalities. When properly configured, a firewall protects cloud…

Cryptography and Security · Computer Science 2017-12-29 Michael Bargury , Roy Levin , Royi Ronen

The cyber-threat landscape has evolved tremendously in recent years, with new threat variants emerging daily, and large-scale coordinated campaigns becoming more prevalent. In this study, we propose CELEST (CollaborativE LEarning for…

Cryptography and Security · Computer Science 2023-03-20 Talha Ongun , Simona Boboila , Alina Oprea , Tina Eliassi-Rad , Jason Hiser , Jack Davidson

To cope with the increasing variability and sophistication of modern attacks, machine learning has been widely adopted as a statistically-sound tool for malware detection. However, its security against well-crafted attacks has not only been…

Cryptography and Security · Computer Science 2017-05-01 Ambra Demontis , Marco Melis , Battista Biggio , Davide Maiorca , Daniel Arp , Konrad Rieck , Igino Corona , Giorgio Giacinto , Fabio Roli
‹ Prev 1 2 3 10 Next ›