International Journal of Research

Web security is a challenging issue due to emerging trends in the web attacks. Malicious websites steal the valuable information of the visitors and infect their system for further attacks. Various methodologies are proposed to detect the malicious websites based on features like web contents, HTML codes, session information, and dynamic behaviors. This paper classifies the detection methods in three categories- static, dynamic and hybrid approaches. The limitations in these methods are discussed. This paper also describes the difficulties in classification methods, reliability of test data sources, limitation of various features, and their collection methods. The detailed analysis carried out in this paper provides a new road map for the research in this area.