ShellForge: Adversarial Co-Evolution of Webshell Generation and Multi-View Detection for Robust Webshell Defense
Yizhong Ding
TL;DR
ShellForge presents an adversarial co-evolution framework that jointly trains a webshell generator and a multi-view detector to counter rapidly evolving obfuscated webshells. The detector fuses semantic, structural, and statistical cues, while the generator crafts evasive variants; a safety-preserving de-malicious transformation provides high-quality negatives to guide learning. Through iterative hard-sample exchange and PPO-style updates, ShellForge achieves state-of-the-art robustness, attaining a 0.981 F1 on a challenging EvoSet and a 0.9930 F1 on FWOID, outperforming baselines. The approach mitigates obfuscation bias, handles long-context scripts, and demonstrates practical impact for robust server defense against evolving PHP webshell threats.
Abstract
Webshells remain a primary foothold for attackers to compromise servers, particularly within PHP ecosystems. However, existing detection mechanisms often struggle to keep pace with rapid variant evolution and sophisticated obfuscation techniques that camouflage malicious intent. Furthermore, many current defenses suffer from high false-alarm rates when encountering benign administrative scripts that employ heavy obfuscation for intellectual property protection. To address these challenges, we present ShellForge, an adversarial co-evolution framework that couples automated webshell generation with multi-view detection to continuously harden defensive boundaries. The framework operates through an iterative co-training loop where a generator and a detector mutually reinforce each other via the exchange of hard samples. The generator is optimized through supervised fine-tuning and preference-based reinforcement learning to synthesize functional, highly evasive variants. Simultaneously, we develop a multi-view fusion detector that integrates semantic features from long-string compression, structural features from pruned abstract syntax trees, and global statistical indicators such as Shannon entropy. To minimize false positives, ShellForge utilizes a LLM-based transformation to create de-malicious samples--scripts that retain complex obfuscation patterns but lack harmful payloads--serving as high-quality hard negatives during training. Evaluations on the public FWOID benchmark demonstrate that ShellForge significantly enhances defensive robustness. Upon convergence, the detector maintains a 0.981 F1-score while the generator achieves a 0.939 evasion rate against commercial engines on VirusTotal.
