Skip to main content
SpringerLink
Log in

Remote Network Injection Attack Using X-Cross API Calls

  • Conference paper
  • First Online:
Emerging Trends in Computing and Expert Technology (COMET 2019)

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 35))

  • 1483 Accesses

Abstract

The major problem in digital environment is data security and privacy protection (i.e.) securing the user information that is shared as a resource. Data security has consistently been a major issue in information technology. Considering identification of keylogging malware is one of the major issues for antimalware protectors. The proposed method creates the awareness that how the undocumented API calls and middleware libraries are used by the malware creator to steal the user information remotely by injecting into the process and how hide them from the antimalware protector. The experimental results of the proposed work shows the antimalware protector need to take more attention on API call hooking at network level injection by X-cross languages.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 129.00
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Wazid, M., Sharma, R., Katal, A., Goudar, R.H., Bhakuni, P., Tyagi, A.: Implementation and Embellishment of Prevention of Keylogger Spyware Attacks. In: Security in Computing and Communications, of the series Communications in Computer and Information Science, vol. 377, pp. 262–271 (2013). http://link.springer.com/chapter/10.1007%2F978-3-642-40576-1_26

  2. Vishnani, K., Pais, A.R., Mohandas, R.: An in-depth analysis of the epitome of online stealth: keyloggers; and their countermeasures. In: Advances in Computing and Communications of the series Communications in Computer and Information Science, vol. 192, pp. 10–19 (2011). http://link.springer.com/chapter/10.1007%2F978-3-642-22720-2_2

  3. Vasiliadis, G., Polychronakis, M., Ioannidis, S.: GPU-assisted malware. Int. J. Inf. Secur. 14(3), 289–297 (2015)

    Article  Google Scholar 

  4. Ortolani, S., Giuffrida, C., Crispo, B.: Bait your hook: a novel detection technique for keyloggers. In: Recent Advances in Intrusion Detection, vol. 6307 (2010). http://link.springer.com/chapter/10.1007%2F978-3-642-15512-3_11

  5. Damopoulos, D., Kambourakis, G., Gritzalis, S.: From keyloggers to touchloggers: take the rough with the smooth. J. Comput. Secur. 32, 102–114 (2013). http://dl.acm.org/citation.cfm?id=2622909

  6. Father, H.: Hooking windows API-technics of hooking API functions on windows. Assembly-Program. J. 2(2) (2004)

    Google Scholar 

  7. Prochazka, B., Vojnar, T., Drahanský, M.: Hijacking the linux kernel. In MEMICS, pp. 85–92 (2010)

    Google Scholar 

  8. Wazid, M., Katal, A., Goudar, R.H., Singh, D.P.: A framework for detection and prevention of novel keylogger spyware attacks. In: 7th International Conference on Intelligent Systems and Control (ISCO), 2013, 4–5 January 2013, pp. 433–438. IEEE (2013). https://doi.org/10.1109/isco.2013.6481194

  9. Cho, J., Cho, G., Kim, H.: Keyboard or keylogger?: a security analysis of third-party keyboards on Android. In: 2015 13th Annual Conference on Privacy, Security and Trust (PST), 21–23 July 2015, pp. 173–176. IEEE (2015). https://doi.org/10.1109/pst.2015.7232970

  10. Sagiroglu, S., Canbek, G.: Keyloggers. In: IEEE Society on Social Implications of Technology, IEEE, 18 September 2009. https://doi.org/10.1109/mts.2009.934159, ISSN: 0278–0097

  11. Naval, S., Laxmi, V., Rajarajan, M., Gaur, M.S., Conti, M.: Employing Program Semantics for Malware Detection. IEEE Transactions on Information Forensics and Security 10(12), 2591–2604 (2015)

    Article  Google Scholar 

  12. Barabosch, T., Eschweiler, S., Gerhards Padilla, E.: Bee master: detecting host-based code injection attacks. In: Detection of Intrusions and Malware, and Vulnerability Assessment, Print (2014). ISBN 978-3-319-08508-1

    Google Scholar 

  13. https://en.wikipedia.org/wiki/Keystroke_logging

  14. https://msdn.microsoft.com/en-IN/library/ms809762.aspx

  15. http://docs.oracle.com/javase/7/docs/technotes/guides/jni/spec/jniTOC.html

Download references

Author information

Authors and Affiliations

  1. Department of CSE, Coimbatore Institute of Technology, Coimbatore, India

    M. Prabhavathy

  2. Department of ECE, Coimbatore Institute of Technology, Coimbatore, India

    S. Uma Maheswari

Authors
  1. M. Prabhavathy
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. S. Uma Maheswari
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to M. Prabhavathy .

Editor information

Editors and Affiliations

  1. Department of ECE, Karunya University, Coimbatore, India

    D. Jude Hemanth

  2. Department of Computer Science and Engineering, Panimalar Engineering College, Chennai, Tamil Nadu, India

    V. D. Ambeth Kumar

  3. Department of Computer Science and Engineering, Panimalar Engineering College, Chennai, Tamil Nadu, India

    S. Malathi

  4. Division of Graduate Studies and Research, Tijuana Institute of Technology, Tijuana, Baja California, Mexico

    Oscar Castillo

  5. Faculty of Computer Science, "Alexandru Ioan Cuza" University of Iasi, Iasi, Romania

    Bogdan Patrut

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Prabhavathy, M., Uma Maheswari, S. (2020). Remote Network Injection Attack Using X-Cross API Calls. In: Hemanth, D.J., Kumar, V.D.A., Malathi, S., Castillo, O., Patrut, B. (eds) Emerging Trends in Computing and Expert Technology. COMET 2019. Lecture Notes on Data Engineering and Communications Technologies, vol 35. Springer, Cham. https://doi.org/10.1007/978-3-030-32150-5_142

Download citation

Publish with us

Policies and ethics

Search

Navigation