A Study on Exploit Development

2022 7th International Conference on Computing, Communication and Security (ICCCS) Pub Date : 2022-11-03 DOI:10.1109/ICCCS55188.2022.10079387

Rosy Chadha, G. S. Shalom, Vivek Kumar Anand, Agam Goel

{"title":"A Study on Exploit Development","authors":"Rosy Chadha, G. S. Shalom, Vivek Kumar Anand, Agam Goel","doi":"10.1109/ICCCS55188.2022.10079387","DOIUrl":null,"url":null,"abstract":"A program or collection of instructions designed to exploit the flaws in other applications is known as an exploit. Exploit development is identifying vulnerabilities in apps and software and determining how to gain control of a system; thus, exploit development is critical for the security of digital assets and sensitive data stored on computer systems. Many flaws require an attacker to launch a series of shady actions to set up an exploit. Most of the vulnerabilities occur due to faults in software or system architecture. Attackers write code to exploit these holes to infect the machine with various types of malware which is often built on the collection of exploits and can easily be hidden in plain view of different websites. The hidden code on a website may instantly identify the operating system and programs that are running on a user’s machine, as well as the user’s browser type, and check for any vulnerabilities. In today’s world, the internet is the major cause of spreading many malware, viruses, and embedded scripts. Hence our problem statement will revolve around the detection of malicious and benign URLs and thus testing them to get the type of vulnerability.","PeriodicalId":149615,"journal":{"name":"2022 7th International Conference on Computing, Communication and Security (ICCCS)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 7th International Conference on Computing, Communication and Security (ICCCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCCS55188.2022.10079387","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

A program or collection of instructions designed to exploit the flaws in other applications is known as an exploit. Exploit development is identifying vulnerabilities in apps and software and determining how to gain control of a system; thus, exploit development is critical for the security of digital assets and sensitive data stored on computer systems. Many flaws require an attacker to launch a series of shady actions to set up an exploit. Most of the vulnerabilities occur due to faults in software or system architecture. Attackers write code to exploit these holes to infect the machine with various types of malware which is often built on the collection of exploits and can easily be hidden in plain view of different websites. The hidden code on a website may instantly identify the operating system and programs that are running on a user’s machine, as well as the user’s browser type, and check for any vulnerabilities. In today’s world, the internet is the major cause of spreading many malware, viruses, and embedded scripts. Hence our problem statement will revolve around the detection of malicious and benign URLs and thus testing them to get the type of vulnerability.

查看原文本刊更多论文

开发开发研究

设计用于利用其他应用程序中的缺陷的程序或指令集称为漏洞。漏洞开发是识别应用程序和软件中的漏洞，并确定如何获得对系统的控制;因此，漏洞开发对于存储在计算机系统中的数字资产和敏感数据的安全至关重要。许多漏洞需要攻击者发起一系列可疑的行动来设置漏洞。大多数漏洞是由于软件或系统架构的错误造成的。攻击者编写代码来利用这些漏洞，用各种类型的恶意软件感染机器，这些恶意软件通常建立在漏洞的集合上，可以很容易地隐藏在不同网站的普通视图中。网站上的隐藏代码可以立即识别用户机器上运行的操作系统和程序，以及用户的浏览器类型，并检查任何漏洞。在当今世界，互联网是传播许多恶意软件、病毒和嵌入式脚本的主要原因。因此，我们的问题声明将围绕恶意和良性url的检测，从而测试它们以获得漏洞的类型。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 7th International Conference on Computing, Communication and Security (ICCCS)

自引率

0.00%

发文量