MACHINE LEARNING FOR WEB VULNERABILITY DETECTION

Main Article Content

DR. T. S. GHOUSE BASHA, P SANDHYA, P. SUPRIYA, P. NAVYA

Abstract

In this project, we propose a methodology to leverage Machine Learning (ML) for the detection of web application vulnerabilities. Web applications are particularly challenging to analyses, due to their diversity and the widespread adoption of custom programming practices. ML is thus very helpful for web application security: it can take advantage of manually labeled data to bring the human understanding of the web application semantics into automated analysis tools. We use our methodology in the design of Mitch, the first ML solution for the black-box detection of Cross-Site Request Forgery (CSRF) vulnerabilities. Mitch allowed us to identify 35 new CSRFs on 20 major websites and 3 new CSRFs on production software.

Downloads

Download data is not yet available.

Metrics

Metrics Loading ...

Article Details

How to Cite
DR. T. S. GHOUSE BASHA, P SANDHYA, P. SUPRIYA, P. NAVYA. (2023). MACHINE LEARNING FOR WEB VULNERABILITY DETECTION. Turkish Journal of Computer and Mathematics Education (TURCOMAT), 14(2), 611–618. https://doi.org/10.17762/turcomat.v14i2.13693
Section
Research Articles