{"id":"https://openalex.org/W4411670610","doi":"https://doi.org/10.3390/fi17070284","title":"Strategies and Challenges in Detecting XSS Vulnerabilities Using an Innovative Cookie Collector","display_name":"Strategies and Challenges in Detecting XSS Vulnerabilities Using an Innovative Cookie Collector","publication_year":2025,"publication_date":"2025-06-26","ids":{"openalex":"https://openalex.org/W4411670610","doi":"https://doi.org/10.3390/fi17070284"},"language":"en","primary_location":{"id":"doi:10.3390/fi17070284","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi17070284","pdf_url":"https://www.mdpi.com/1999-5903/17/7/284/pdf?version=1750931881","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/1999-5903/17/7/284/pdf?version=1750931881","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5057819886","display_name":"Germ\u00e1n Rodr\u00edguez","orcid":"https://orcid.org/0000-0001-5663-2216"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]}],"countries":["EC"],"is_corresponding":true,"raw_author_name":"Germ\u00e1n Rodr\u00edguez-Gal\u00e1n","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador"],"raw_orcid":"https://orcid.org/0000-0001-5663-2216","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador","institution_ids":["https://openalex.org/I118946981"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017365409","display_name":"Eduardo Benavides-Astudillo","orcid":"https://orcid.org/0000-0003-4543-0082"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]}],"countries":["EC"],"is_corresponding":false,"raw_author_name":"Eduardo Benavides-Astudillo","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador"],"raw_orcid":"https://orcid.org/0000-0003-4543-0082","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador","institution_ids":["https://openalex.org/I118946981"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021162574","display_name":"Daniel Nu\u00f1ez-Agurto","orcid":"https://orcid.org/0000-0001-7737-3815"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]}],"countries":["EC"],"is_corresponding":false,"raw_author_name":"Daniel Nu\u00f1ez-Agurto","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador"],"raw_orcid":"https://orcid.org/0000-0001-7737-3815","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador","institution_ids":["https://openalex.org/I118946981"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5013622219","display_name":"Pablo Francisco Puente Ponce","orcid":"https://orcid.org/0000-0001-8884-6905"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]}],"countries":["EC"],"is_corresponding":false,"raw_author_name":"Pablo Puente-Ponce","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador"],"raw_orcid":"https://orcid.org/0000-0001-8884-6905","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Santo Domingo de los Ts\u00e1chilas, Parroquia Luz de Am\u00e9rica 230118, Ecuador","institution_ids":["https://openalex.org/I118946981"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5047230094","display_name":"Sonia C\u00e1rdenas-Delgado","orcid":"https://orcid.org/0000-0002-5571-8939"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]}],"countries":["EC"],"is_corresponding":false,"raw_author_name":"Sonia C\u00e1rdenas-Delgado","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador"],"raw_orcid":"https://orcid.org/0000-0002-5571-8939","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador","institution_ids":["https://openalex.org/I118946981"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5031252043","display_name":"Mauricio Loacham\u00edn-Valencia","orcid":"https://orcid.org/0000-0003-4164-1966"},"institutions":[{"id":"https://openalex.org/I118946981","display_name":"Universidad de las Fuerzas Armadas ESPE","ror":"https://ror.org/05j136930","country_code":"EC","type":"education","lineage":["https://openalex.org/I118946981"]},{"id":"https://openalex.org/I70764802","display_name":"National Polytechnic School","ror":"https://ror.org/01gb99w41","country_code":"EC","type":"education","lineage":["https://openalex.org/I70764802"]}],"countries":["EC"],"is_corresponding":false,"raw_author_name":"Mauricio Loacham\u00edn-Valencia","raw_affiliation_strings":["Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador","Departamento de Inform\u00e1tica y Ciencias de la Computaci\u00f3n, Escuela Polit\u00e9cnica Nacional, Quito 170525, Ecuador"],"raw_orcid":"https://orcid.org/0000-0003-4164-1966","affiliations":[{"raw_affiliation_string":"Departamento de Ciencias de la Computaci\u00f3n, Universidad de las Fuerzas Armadas-ESPE, Sangolqu\u00ed 171103, Ecuador","institution_ids":["https://openalex.org/I118946981"]},{"raw_affiliation_string":"Departamento de Inform\u00e1tica y Ciencias de la Computaci\u00f3n, Escuela Polit\u00e9cnica Nacional, Quito 170525, Ecuador","institution_ids":["https://openalex.org/I70764802"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5057819886"],"corresponding_institution_ids":["https://openalex.org/I118946981"],"apc_list":{"value":1400,"currency":"CHF","value_usd":1515},"apc_paid":{"value":1400,"currency":"CHF","value_usd":1515},"fwci":2.5549,"has_fulltext":true,"cited_by_count":1,"citation_normalized_percentile":{"value":0.90016801,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":98},"biblio":{"volume":"17","issue":"7","first_page":"284","last_page":"284"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9929999709129333,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9905999898910522,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.9204778671264648},{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.8250004053115845},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4945954978466034},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.42198628187179565},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2195771336555481},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.1675196886062622},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.12558209896087646},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.10554894804954529},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.10103568434715271}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.9204778671264648},{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.8250004053115845},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4945954978466034},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.42198628187179565},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2195771336555481},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.1675196886062622},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.12558209896087646},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.10554894804954529},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.10103568434715271},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.0},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.3390/fi17070284","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi17070284","pdf_url":"https://www.mdpi.com/1999-5903/17/7/284/pdf?version=1750931881","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:d23674d01ad54e84af54f8c052c3fd13","is_oa":true,"landing_page_url":"https://doaj.org/article/d23674d01ad54e84af54f8c052c3fd13","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Future Internet, Vol 17, Iss 7, p 284 (2025)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.3390/fi17070284","is_oa":true,"landing_page_url":"https://doi.org/10.3390/fi17070284","pdf_url":"https://www.mdpi.com/1999-5903/17/7/284/pdf?version=1750931881","source":{"id":"https://openalex.org/S34838331","display_name":"Future Internet","issn_l":"1999-5903","issn":["1999-5903"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Future Internet","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4411670610.pdf","grobid_xml":"https://content.openalex.org/works/W4411670610.grobid-xml"},"referenced_works_count":37,"referenced_works":["https://openalex.org/W1991074244","https://openalex.org/W2048406491","https://openalex.org/W2049214202","https://openalex.org/W2060218972","https://openalex.org/W2090184259","https://openalex.org/W2098473270","https://openalex.org/W2111487235","https://openalex.org/W2122917826","https://openalex.org/W2134646643","https://openalex.org/W2148211687","https://openalex.org/W2171146668","https://openalex.org/W2177614278","https://openalex.org/W2227421386","https://openalex.org/W2283233106","https://openalex.org/W2509745758","https://openalex.org/W2509796803","https://openalex.org/W2536013516","https://openalex.org/W2596525465","https://openalex.org/W2790761820","https://openalex.org/W2805746269","https://openalex.org/W2901089484","https://openalex.org/W2921583067","https://openalex.org/W2961730189","https://openalex.org/W2970248776","https://openalex.org/W3028923160","https://openalex.org/W3045133375","https://openalex.org/W3090600625","https://openalex.org/W3107473573","https://openalex.org/W3120899117","https://openalex.org/W3156816392","https://openalex.org/W4309283027","https://openalex.org/W4311165858","https://openalex.org/W4404889095","https://openalex.org/W6628434726","https://openalex.org/W6675142023","https://openalex.org/W6678533133","https://openalex.org/W6874704235"],"related_works":["https://openalex.org/W2070218579","https://openalex.org/W3011343922","https://openalex.org/W2338961676","https://openalex.org/W3202480305","https://openalex.org/W1668723973","https://openalex.org/W2135541478","https://openalex.org/W3119087697","https://openalex.org/W2234315467","https://openalex.org/W144633646","https://openalex.org/W2067195038"],"abstract_inverted_index":{"This":[0,151],"study":[1],"presents":[2],"a":[3,88,154],"system":[4],"for":[5,21,91,165],"automatic":[6],"cookie":[7,49,121],"collection":[8,33],"using":[9],"bots":[10,17],"that":[11],"simulate":[12],"user":[13,117,170],"browsing":[14,132],"behavior.":[15],"Five":[16],"were":[18,99],"deployed,":[19],"one":[20],"each":[22],"of":[23,124],"the":[24,138,163],"most":[25],"commonly":[26],"used":[27],"university":[28],"browsers,":[29],"enabling":[30],"comprehensive":[31],"data":[32,76],"across":[34],"multiple":[35],"platforms.":[36],"The":[37,59,74,135],"infrastructure":[38],"included":[39],"an":[40],"Ubuntu":[41],"server":[42],"with":[43,53,70],"PiHole":[44],"and":[45,51,56,84,93,106,131,145,160],"Tshark":[46],"services,":[47],"facilitating":[48],"classification":[50],"association":[52],"third-party":[54],"advertising":[55],"tracking":[57],"networks.":[58],"BotSoul":[60],"algorithm":[61],"automated":[62],"navigation,":[63],"analyzing":[64],"440,000":[65],"URLs":[66],"over":[67],"10.9":[68],"days":[69],"uninterrupted":[71],"bot":[72],"operation.":[73],"collected":[75],"established":[77],"relationships":[78],"between":[79],"visited":[80],"domains,":[81],"generated":[82],"cookies,":[83],"captured":[85],"traffic,":[86],"providing":[87],"solid":[89],"foundation":[90],"security":[92,143,159],"privacy":[94],"analysis.":[95],"Machine":[96],"learning":[97],"models":[98],"developed":[100],"to":[101,110],"classify":[102],"suspicious":[103],"web":[104,129,158],"domains":[105],"predict":[107],"their":[108],"vulnerability":[109],"XSS":[111],"attacks.":[112],"Additionally,":[113],"clustering":[114],"algorithms":[115],"enabled":[116],"segmentation":[118],"based":[119],"on":[120],"data,":[122],"identification":[123],"behavioral":[125],"patterns,":[126],"enhanced":[127],"personalized":[128],"recommendations,":[130],"experience":[133],"optimization.":[134],"results":[136],"highlight":[137],"system\u2019s":[139],"effectiveness":[140],"in":[141,157,168],"detecting":[142],"threats":[144],"improving":[146],"navigation":[147],"through":[148],"adaptive":[149],"recommendations.":[150],"research":[152],"marks":[153],"significant":[155],"advancement":[156],"privacy,":[161],"laying":[162],"groundwork":[164],"future":[166],"improvements":[167],"protecting":[169],"information.":[171]},"counts_by_year":[{"year":2026,"cited_by_count":1}],"updated_date":"2026-05-21T06:26:12.895304","created_date":"2025-10-10T00:00:00"}