CN101719906B - 一种基于蠕虫传播行为的蠕虫检测方法 - Google Patents
一种基于蠕虫传播行为的蠕虫检测方法 Download PDFInfo
- Publication number
- CN101719906B CN101719906B CN2009102161806A CN200910216180A CN101719906B CN 101719906 B CN101719906 B CN 101719906B CN 2009102161806 A CN2009102161806 A CN 2009102161806A CN 200910216180 A CN200910216180 A CN 200910216180A CN 101719906 B CN101719906 B CN 101719906B
- Authority
- CN
- China
- Prior art keywords
- worm
- address
- packet
- connection
- source
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (2)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009102161806A CN101719906B (zh) | 2009-11-10 | 2009-11-10 | 一种基于蠕虫传播行为的蠕虫检测方法 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009102161806A CN101719906B (zh) | 2009-11-10 | 2009-11-10 | 一种基于蠕虫传播行为的蠕虫检测方法 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101719906A CN101719906A (zh) | 2010-06-02 |
CN101719906B true CN101719906B (zh) | 2012-05-30 |
Family
ID=42434421
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2009102161806A Active CN101719906B (zh) | 2009-11-10 | 2009-11-10 | 一种基于蠕虫传播行为的蠕虫检测方法 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101719906B (zh) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102546394B (zh) * | 2011-12-13 | 2014-12-31 | 曙光信息产业(北京)有限公司 | 一种tcp连接淘汰方法 |
CN102916975A (zh) * | 2012-11-14 | 2013-02-06 | 吉林大学 | 一种推测网络蠕虫传播路径的方法 |
CN104601604B (zh) * | 2014-06-12 | 2019-03-15 | 国家电网公司 | 网络安全态势分析方法 |
CN105281981B (zh) * | 2015-11-04 | 2019-04-02 | 北京百度网讯科技有限公司 | 网络服务的数据流量监控方法和装置 |
CN110750785B (zh) * | 2019-10-24 | 2022-03-11 | 杭州安恒信息技术股份有限公司 | 针对主机端口扫描行为的检测方法及装置 |
CN111314300B (zh) * | 2020-01-17 | 2022-03-22 | 广州华多网络科技有限公司 | 恶意扫描ip检测方法、系统、装置、设备和存储介质 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1859199A (zh) * | 2006-02-20 | 2006-11-08 | 华为技术有限公司 | 一种网络蠕虫检测系统及方法 |
KR20070114155A (ko) * | 2005-03-24 | 2007-11-29 | 인터내셔널 비지네스 머신즈 코포레이션 | 네트워크 공격 검출 방법 |
CN101572713A (zh) * | 2009-06-10 | 2009-11-04 | 成都市华为赛门铁克科技有限公司 | 蠕虫检测方法及系统 |
-
2009
- 2009-11-10 CN CN2009102161806A patent/CN101719906B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20070114155A (ko) * | 2005-03-24 | 2007-11-29 | 인터내셔널 비지네스 머신즈 코포레이션 | 네트워크 공격 검출 방법 |
CN1859199A (zh) * | 2006-02-20 | 2006-11-08 | 华为技术有限公司 | 一种网络蠕虫检测系统及方法 |
CN101572713A (zh) * | 2009-06-10 | 2009-11-04 | 成都市华为赛门铁克科技有限公司 | 蠕虫检测方法及系统 |
Non-Patent Citations (3)
Title |
---|
廖明涛等.基于失败连接分析的网络蠕虫检测系统研究.《微电子学与计算机》.2007,第24卷(第5期),全文. * |
王琦等.蠕虫扫描检测算法的注记.《网络信息技术》.2005,第24卷(第6期),全文. * |
赵广松.基于蠕虫传播特性的蠕虫检测系统设计.《计算机安全》.2009,全文. * |
Also Published As
Publication number | Publication date |
---|---|
CN101719906A (zh) | 2010-06-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108683687B (zh) | 一种网络攻击识别方法及系统 | |
CN108471429B (zh) | 一种网络攻击告警方法及系统 | |
CN106790186B (zh) | 基于多源异常事件关联分析的多步攻击检测方法 | |
CN108881263B (zh) | 一种网络攻击结果检测方法及系统 | |
CN101719906B (zh) | 一种基于蠕虫传播行为的蠕虫检测方法 | |
CN102664875B (zh) | 基于云模式的恶意代码类别检测方法 | |
CN103428196B (zh) | 一种基于url白名单的web应用入侵检测方法 | |
US8181248B2 (en) | System and method of detecting anomaly malicious code by using process behavior prediction technique | |
Shabtai et al. | F-sign: Automatic, function-based signature generation for malware | |
CN111988339B (zh) | 一种基于dikw模型的网络攻击路径发现、提取和关联的方法 | |
CN101895521A (zh) | 一种网络蠕虫检测与特征自动提取方法及其系统 | |
CN106133740A (zh) | 日志分析系统 | |
CN104135474B (zh) | 基于主机出入度的网络异常行为检测方法 | |
CN106104556A (zh) | 日志分析系统 | |
CN111259204A (zh) | 基于图算法的apt检测关联分析方法 | |
CN102799814A (zh) | 一种钓鱼网站查找系统及方法 | |
JP6174520B2 (ja) | 悪性通信パターン検知装置、悪性通信パターン検知方法、および、悪性通信パターン検知プログラム | |
CN108521392B (zh) | 一种双向流量的sql注入攻击检测方法 | |
CN110912884A (zh) | 一种检测方法、设备及计算机存储介质 | |
CN110750785B (zh) | 针对主机端口扫描行为的检测方法及装置 | |
CN112948821A (zh) | 一种apt检测预警方法 | |
CN105407096A (zh) | 基于流管理的报文数据检测方法 | |
Esposito et al. | Evaluating pattern recognition techniques in intrusion detection systems | |
KR20110088042A (ko) | 악성 코드 자동 판별 장치 및 방법 | |
US20180020014A1 (en) | Malicious communication pattern extraction device, malicious communication pattern extraction system, malicious communication pattern extraction method, and malicious communication pattern extraction program |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
ASS | Succession or assignment of patent right |
Owner name: WUXI UEST SCIENCE + TECHNOLOGY DEVELOPMENT CO., LT Free format text: FORMER OWNER: UNIVERSITY OF ELECTRONIC SCIENCE AND TECHNOLOGY OF CHINA Effective date: 20131029 |
|
C41 | Transfer of patent application or patent right or utility model | ||
COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 610054 CHENGDU, SICHUAN PROVINCE TO: 214135 WUXI, JIANGSU PROVINCE |
|
TR01 | Transfer of patent right |
Effective date of registration: 20131029 Address after: 214135 Jiangsu New District of Wuxi City Branch Park University Chinese sensor network science and Technology Park building A room 402 business district Patentee after: Wuxi UESTC Technology Development Co., Ltd. Address before: 610054 Chengdu province high tech West West source Avenue, No. 2006 Patentee before: University of Electronic Science and Technology of China |
|
TR01 | Transfer of patent right |
Effective date of registration: 20210113 Address after: No.2006 Xiyuan Avenue, Chengdu, Sichuan 611731 Patentee after: University of Electronic Science and technology of Sichuan foundation for education development Address before: Room 402, area a, Liye building, science and Technology Park, China sensor network university, Taike Park, New District, Wuxi City, Jiangsu Province, 214135 Patentee before: WUXI UESTC TECHNOLOGY DEVELOPMENT Co.,Ltd. |
|
TR01 | Transfer of patent right |