CN102043919B - 基于脚本虚拟机的漏洞通用检测方法和系统 - Google Patents
基于脚本虚拟机的漏洞通用检测方法和系统 Download PDFInfo
- Publication number
- CN102043919B CN102043919B CN2010106071981A CN201010607198A CN102043919B CN 102043919 B CN102043919 B CN 102043919B CN 2010106071981 A CN2010106071981 A CN 2010106071981A CN 201010607198 A CN201010607198 A CN 201010607198A CN 102043919 B CN102043919 B CN 102043919B
- Authority
- CN
- China
- Prior art keywords
- script
- virtual machine
- shell
- leak
- shell script
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013515 script Methods 0.000 title claims abstract description 176
- 238000001514 detection method Methods 0.000 title claims abstract description 16
- 238000000034 method Methods 0.000 claims abstract description 30
- 230000006870 function Effects 0.000 claims description 16
- 238000005507 spraying Methods 0.000 claims description 14
- 238000010998 test method Methods 0.000 claims description 13
- 238000012544 monitoring process Methods 0.000 claims description 9
- 238000013459 approach Methods 0.000 claims description 6
- 238000012545 processing Methods 0.000 claims description 6
- 230000000694 effects Effects 0.000 abstract description 4
- 239000007921 spray Substances 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 3
- 238000002347 injection Methods 0.000 description 3
- 239000007924 injection Substances 0.000 description 3
- 241000700605 Viruses Species 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000006399 behavior Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
Images
Abstract
Description
Claims (12)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2010106071981A CN102043919B (zh) | 2010-12-27 | 2010-12-27 | 基于脚本虚拟机的漏洞通用检测方法和系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2010106071981A CN102043919B (zh) | 2010-12-27 | 2010-12-27 | 基于脚本虚拟机的漏洞通用检测方法和系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102043919A CN102043919A (zh) | 2011-05-04 |
CN102043919B true CN102043919B (zh) | 2012-11-21 |
Family
ID=43910051
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2010106071981A Active CN102043919B (zh) | 2010-12-27 | 2010-12-27 | 基于脚本虚拟机的漏洞通用检测方法和系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102043919B (zh) |
Families Citing this family (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102955913A (zh) * | 2011-08-25 | 2013-03-06 | 腾讯科技(深圳)有限公司 | 一种网页挂马检测方法及系统 |
CN102622543B (zh) * | 2012-02-06 | 2016-08-03 | 北京百度网讯科技有限公司 | 一种动态检测恶意网页脚本的方法和装置 |
WO2014089744A1 (zh) * | 2012-12-10 | 2014-06-19 | 华为技术有限公司 | 恶意代码的检测方法及装置 |
CN103425930B (zh) * | 2012-12-27 | 2016-09-07 | 北京安天电子设备有限公司 | 一种在线实时脚本检测方法及系统 |
CN103902914B (zh) * | 2013-09-17 | 2017-06-23 | 北京安天网络安全技术有限公司 | 一种针对高级可持续威胁的溢出漏洞检测方法及系统 |
CN103617390A (zh) * | 2013-11-06 | 2014-03-05 | 北京奇虎科技有限公司 | 一种恶意网页判断方法、装置和系统 |
CN103559447B (zh) * | 2013-11-15 | 2016-05-25 | 北京奇虎科技有限公司 | 一种基于病毒样本特征的检测方法、检测装置及检测系统 |
CN103617396B (zh) * | 2013-11-29 | 2016-11-02 | 杭州华三通信技术有限公司 | 一种漏洞利用的检测方法和系统 |
CN104298923B (zh) * | 2014-09-28 | 2018-01-02 | 北京奇虎科技有限公司 | 漏洞类型识别方法以及装置 |
CN104239796B (zh) * | 2014-09-28 | 2017-04-19 | 北京奇虎科技有限公司 | 0day漏洞的识别方法以及装置 |
CN104239801B (zh) * | 2014-09-28 | 2017-10-24 | 北京奇虎科技有限公司 | 0day漏洞的识别方法以及装置 |
CN104331663B (zh) * | 2014-10-31 | 2017-09-01 | 北京奇虎科技有限公司 | web shell的检测方法以及web服务器 |
CN104408368B (zh) * | 2014-11-21 | 2017-07-21 | 中国联合网络通信集团有限公司 | 网址检测方法与装置 |
CN104462985A (zh) * | 2014-11-28 | 2015-03-25 | 北京奇虎科技有限公司 | bat漏洞的检测方法以及装置 |
CN108563946A (zh) * | 2018-04-17 | 2018-09-21 | 广州大学 | 一种浏览器挖矿行为检测的方法、浏览器插件和系统 |
CN110059477B (zh) * | 2019-03-14 | 2021-08-10 | 成都亚信网络安全产业技术研究院有限公司 | 一种攻击检测方法及装置 |
CN111177727A (zh) * | 2019-09-23 | 2020-05-19 | 腾讯科技(深圳)有限公司 | 漏洞检测方法及装置 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101630325A (zh) * | 2009-08-18 | 2010-01-20 | 北京大学 | 一种基于脚本特征的网页聚类方法 |
CN101673326A (zh) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | 基于程序执行特征的网页木马检测方法 |
CN101826139A (zh) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | 一种非可执行文件挂马检测方法及其装置 |
-
2010
- 2010-12-27 CN CN2010106071981A patent/CN102043919B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101673326A (zh) * | 2008-09-11 | 2010-03-17 | 北京理工大学 | 基于程序执行特征的网页木马检测方法 |
CN101630325A (zh) * | 2009-08-18 | 2010-01-20 | 北京大学 | 一种基于脚本特征的网页聚类方法 |
CN101826139A (zh) * | 2009-12-30 | 2010-09-08 | 厦门市美亚柏科信息股份有限公司 | 一种非可执行文件挂马检测方法及其装置 |
Also Published As
Publication number | Publication date |
---|---|
CN102043919A (zh) | 2011-05-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102043919B (zh) | 基于脚本虚拟机的漏洞通用检测方法和系统 | |
CN103714292B (zh) | 一种漏洞利用代码的检测方法 | |
CN102254113A (zh) | 一种检测和拦截移动终端恶意代码的方法及系统 | |
CN102609649B (zh) | 一种自动采集恶意软件的方法和装置 | |
CN102622543B (zh) | 一种动态检测恶意网页脚本的方法和装置 | |
US10867050B2 (en) | Method and apparatus for generating dynamic security module | |
CN101964026A (zh) | 网页挂马检测方法和系统 | |
CN100568255C (zh) | 一种网页防挂马的方法 | |
US20150033342A1 (en) | Security detection method and system | |
CN103065089B (zh) | 网页木马的检测方法和装置 | |
CN104834859A (zh) | 一种Android应用中恶意行为的动态检测方法 | |
CN102739663A (zh) | 网页检测方法与扫描引擎 | |
CN103970760B (zh) | 一种网页请求处理方法及装置 | |
CN102955913A (zh) | 一种网页挂马检测方法及系统 | |
US10515213B2 (en) | Detecting malware by monitoring execution of a configured process | |
CN105975856A (zh) | 一种移动终端病毒动态检测方法及系统 | |
CN104778423B (zh) | 基于文件驱动的水印对比的网页防篡改方法 | |
CN105138905A (zh) | Linux应用程序的隔离运行方法 | |
CN105095759A (zh) | 文件的检测方法及装置 | |
CN105791261A (zh) | 一种跨站脚本攻击的检测方法和检测设备 | |
KR20120070019A (ko) | 하이브리드 인터액션 클라이언트 허니팟 시스템 및 그 운용방법 | |
CN103973749A (zh) | 基于云服务器的网站处理方法及云服务器 | |
CN106682493B (zh) | 一种防止进程被恶意结束的方法、装置及电子设备 | |
CN104992116B (zh) | 基于intent sniffer的监测方法及系统 | |
CN102156650B (zh) | 一种实现补丁自动分析的方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
C56 | Change in the name or address of the patentee | ||
CP02 | Change in the address of a patent holder |
Address after: 100190 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee after: Beijing Antiy Electronic Installation Co., Ltd. Address before: 100085, 2B-521, bright city, No. 1, Nongda South Road, Beijing, Haidian District Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address |
Address after: 100195 Beijing city Haidian District minzhuang Road No. 3, Tsinghua Science Park Building 1 Yuquan Huigu a Patentee after: Beijing ahtech network Safe Technology Ltd Address before: 100190 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Universal vulnerability detection method and system based on script virtual machine Effective date of registration: 20181119 Granted publication date: 20121121 Pledgee: Shanghai Pudong Development Bank Limited by Share Ltd Harbin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2018990001084 Denomination of invention: Universal vulnerability detection method and system based on script virtual machine Effective date of registration: 20181119 Granted publication date: 20121121 Pledgee: Shanghai Pudong Development Bank Limited by Share Ltd Harbin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2018990001084 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20200508 Granted publication date: 20121121 Pledgee: Shanghai Pudong Development Bank Limited by Share Ltd Harbin branch Pledgor: BEIJING ANTIY NETWORK TECHNOLOGY Co.,Ltd. Registration number: 2018990001084 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |