“Write once, run anywhere.” The everlasting and highly effective marketing slogan coined by Sun Microsystems to lure in Java developers has, in recent years, made Java an equally appealing proposition for exploit writers. Despite its ease of use, however, detection of Java-based exploits has always been a challenge. In this talk, we will discuss the techniques to detect malicious Applets.