Detecting XSS attacks by combining CNN with LSTM

Detecting XSS attacks by combining CNN with LSTM

Citation Author(s):
Boyu
Zhang
Guangzhou University
Submitted by:
Miao Liu
Last updated:
Tue, 12/03/2019 - 22:24
DOI:
10.21227/css6-ds36
Data Format:
Links:
License:
Dataset Views:
39
Share / Embed Cite

 

XSS is a common attack that has been in the OWAP Top 10 project for many years. With the development of deep learning, deep neural networks are gradually applied in various fields such as finance, medical treatment and so on. At the same time, security researchers have also proposed a series of methods to detect XSS attacks based on neural networks, but no one has tried to detect XSS attacks by combining Convolutional Neural Network (CNN) and Long Short Term Memory(LSTM) recurrent neural network. Based on the fact, this paper proposes a new model which called 3C-LSTM that combines CNN with LSTM to detect XSS attacks. Firstly, it applies word2vec to convert words in XSS payloads into word vectors. Then it trains and tests the data by the model combining CNN and LSTM. The method gets a precision rate of 99.88% and a recall rate of 99.04%. Our work is compared with the work of other to show the excellence of the proposed method. The receiver operating characteristic (ROC) curve is plotted to demonstrate the effectiveness of proposed method.

Instructions: 

The data in xssed.csv comes from XSSed(http://www.XSSed.com)

The data in normal_example.csv from DMOZ(http://www.dmoztools.net/)

Data are URL formed. IP address and domain name are all removed.

Dataset Files

You must login with an IEEE Account to access these files. IEEE Accounts are FREE.

Sign Up now or login.

Embed this dataset on another website

Copy and paste the HTML code below to embed your dataset:

Share via email or social media

Click the buttons below:

facebooktwittermailshare
[1] Boyu Zhang, "Detecting XSS attacks by combining CNN with LSTM", IEEE Dataport, 2019. [Online]. Available: http://dx.doi.org/10.21227/css6-ds36. Accessed: Dec. 14, 2019.
@data{css6-ds36-19,
doi = {10.21227/css6-ds36},
url = {http://dx.doi.org/10.21227/css6-ds36},
author = {Boyu Zhang },
publisher = {IEEE Dataport},
title = {Detecting XSS attacks by combining CNN with LSTM},
year = {2019} }
TY - DATA
T1 - Detecting XSS attacks by combining CNN with LSTM
AU - Boyu Zhang
PY - 2019
PB - IEEE Dataport
UR - 10.21227/css6-ds36
ER -
Boyu Zhang. (2019). Detecting XSS attacks by combining CNN with LSTM. IEEE Dataport. http://dx.doi.org/10.21227/css6-ds36
Boyu Zhang, 2019. Detecting XSS attacks by combining CNN with LSTM. Available at: http://dx.doi.org/10.21227/css6-ds36.
Boyu Zhang. (2019). "Detecting XSS attacks by combining CNN with LSTM." Web.
1. Boyu Zhang. Detecting XSS attacks by combining CNN with LSTM [Internet]. IEEE Dataport; 2019. Available from : http://dx.doi.org/10.21227/css6-ds36
Boyu Zhang. "Detecting XSS attacks by combining CNN with LSTM." doi: 10.21227/css6-ds36