Thumbnail Image
Publication

LL-XSS: End-to-End Generative Model-based XSS Payload Creation

Khan, Sohail
Citations
Altmetric:
Type
Supervisor
Subject
Machine Learning
 Generative AI
 Cross-Site Scripting
 Application Security
Date
2024-01-15
Collections
Computer Science - Conference Papers
Show all metadata
Files
Thumbnail Image
Main Article
Adobe PDF223.7 KB
Research Projects
Organizational Units
Journal Issue
Abstract
In the realm of web security, there is a growing shift towards harnessing machine learning techniques for Cross-Site Scripting (XSS) vulnerability detection. This shift recognizes the potential of automation to streamline identification processes and reduce reliance on manual human analysis. An alternative approach involves security professionals actively executing XSS attacks to precisely pinpoint vulnerable areas within web applications, facilitating targeted remediation. Furthermore, there has been a growing interest in machine learning-based methods for creating XSS payloads in academic and research domains. In this research, we introduce a new model for generating XSS payloads, utilizing a combination of auto-regressive and generative AI models to craft malicious scripts intended to exploit potential vulnerabilities. Our approach to XSS vulnerability detection encompasses both frontend and backend code, providing organizations with a comprehensive means to enhance web application security.
Department
Computer Science
Publisher
IEEE Xplore SCOPUS
Sponsor
Copyright
Book title
Journal title
Open Access
http://hdl.handle.net/20.500.14131/1555
DOI
https://doi.org/10.1109/LT60077.2024.10469151
Embedded videos