CN102769607A - 一种基于网络数据包检测恶意代码的方法和系统 - Google Patents
一种基于网络数据包检测恶意代码的方法和系统 Download PDFInfo
- Publication number
- CN102769607A CN102769607A CN2011104520321A CN201110452032A CN102769607A CN 102769607 A CN102769607 A CN 102769607A CN 2011104520321 A CN2011104520321 A CN 2011104520321A CN 201110452032 A CN201110452032 A CN 201110452032A CN 102769607 A CN102769607 A CN 102769607A
- Authority
- CN
- China
- Prior art keywords
- data
- packet
- malicious code
- detection
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 22
- 238000001514 detection method Methods 0.000 claims abstract description 53
- 238000004891 communication Methods 0.000 claims description 15
- 238000012544 monitoring process Methods 0.000 claims description 10
- 239000000284 extract Substances 0.000 claims description 8
- 238000001914 filtration Methods 0.000 claims description 3
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 abstract description 3
- 230000006399 behavior Effects 0.000 description 9
- 241000700605 Viruses Species 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 4
- 230000000694 effects Effects 0.000 description 3
- 230000003542 behavioural effect Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 241000283086 Equidae Species 0.000 description 1
- 230000003044 adaptive effect Effects 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 230000003612 virological effect Effects 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (9)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110452032.1A CN102769607B (zh) | 2011-12-30 | 2011-12-30 | 一种基于网络数据包检测恶意代码的方法和系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110452032.1A CN102769607B (zh) | 2011-12-30 | 2011-12-30 | 一种基于网络数据包检测恶意代码的方法和系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102769607A true CN102769607A (zh) | 2012-11-07 |
CN102769607B CN102769607B (zh) | 2015-01-07 |
Family
ID=47096857
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201110452032.1A Active CN102769607B (zh) | 2011-12-30 | 2011-12-30 | 一种基于网络数据包检测恶意代码的方法和系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102769607B (zh) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103425930A (zh) * | 2012-12-27 | 2013-12-04 | 北京安天电子设备有限公司 | 一种在线实时脚本检测方法及系统 |
CN104580133A (zh) * | 2013-10-25 | 2015-04-29 | 纬创资通股份有限公司 | 恶意程序防护方法与系统及其过滤表格更新方法 |
CN106817340A (zh) * | 2015-11-27 | 2017-06-09 | 阿里巴巴集团控股有限公司 | 预警决策的方法、节点及子系统 |
CN108881129A (zh) * | 2017-05-16 | 2018-11-23 | 中兴通讯股份有限公司 | 一种高级持续性威胁攻击检测方法及装置 |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101572691A (zh) * | 2008-04-30 | 2009-11-04 | 华为技术有限公司 | 一种入侵检测方法、系统和装置 |
-
2011
- 2011-12-30 CN CN201110452032.1A patent/CN102769607B/zh active Active
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101572691A (zh) * | 2008-04-30 | 2009-11-04 | 华为技术有限公司 | 一种入侵检测方法、系统和装置 |
Cited By (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103425930A (zh) * | 2012-12-27 | 2013-12-04 | 北京安天电子设备有限公司 | 一种在线实时脚本检测方法及系统 |
CN103425930B (zh) * | 2012-12-27 | 2016-09-07 | 北京安天电子设备有限公司 | 一种在线实时脚本检测方法及系统 |
CN104580133A (zh) * | 2013-10-25 | 2015-04-29 | 纬创资通股份有限公司 | 恶意程序防护方法与系统及其过滤表格更新方法 |
CN104580133B (zh) * | 2013-10-25 | 2017-11-21 | 纬创资通股份有限公司 | 恶意程序防护方法与系统及其过滤表格更新方法 |
CN106817340A (zh) * | 2015-11-27 | 2017-06-09 | 阿里巴巴集团控股有限公司 | 预警决策的方法、节点及子系统 |
CN106817340B (zh) * | 2015-11-27 | 2020-05-08 | 阿里巴巴集团控股有限公司 | 预警决策的方法、节点及子系统 |
US11102240B2 (en) | 2015-11-27 | 2021-08-24 | Alibaba Group Holding Limited | Early-warning decision method, node and sub-system |
CN108881129A (zh) * | 2017-05-16 | 2018-11-23 | 中兴通讯股份有限公司 | 一种高级持续性威胁攻击检测方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN102769607B (zh) | 2015-01-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108616534B (zh) | 一种基于区块链防护物联网设备DDoS攻击的方法及系统 | |
CN103428196B (zh) | 一种基于url白名单的web应用入侵检测方法 | |
US10721245B2 (en) | Method and device for automatically verifying security event | |
KR102040990B1 (ko) | 응답이 없는 아웃고잉 네트워크 트래픽의 분석을 통한 감염된 네트워크 장치의 검출 | |
CN102799814B (zh) | 一种钓鱼网站查找系统及方法 | |
WO2016082284A1 (zh) | 基于OCSVM双轮廓模型的Modbus TCP通信行为异常检测方法 | |
CN104601556A (zh) | 一种面向web的攻击检测方法及系统 | |
CN105260662A (zh) | 一种未知应用漏洞威胁检测装置及方法 | |
CN110351280A (zh) | 一种威胁情报提取的方法、系统、设备及可读存储介质 | |
CN103839003A (zh) | 恶意文件检测方法及装置 | |
CN103746992B (zh) | 基于逆向的入侵检测系统及其方法 | |
KR101132197B1 (ko) | 악성 코드 자동 판별 장치 및 방법 | |
CN102819713A (zh) | 一种检测弹窗安全性的方法和系统 | |
CN103500307A (zh) | 一种基于行为模型的移动互联网恶意应用软件检测方法 | |
WO2017071148A1 (zh) | 基于云计算平台的智能防御系统 | |
CN102769607A (zh) | 一种基于网络数据包检测恶意代码的方法和系统 | |
CN102457841B (zh) | 用于检测病毒的方法和装置 | |
CN104794051A (zh) | 一种Android平台恶意软件自动化检测方法 | |
CN110839042B (zh) | 一种基于流量的自反馈恶意软件监测系统和方法 | |
CN112784268A (zh) | 一种主机行为数据的分析方法、装置、设备及存储介质 | |
CN114785567B (zh) | 一种流量识别方法、装置、设备及介质 | |
Zhou et al. | Research and implementation of mobile application security detection combining static and dynamic | |
CN103905421A (zh) | 一种基于url异构性的可疑事件检测方法及系统 | |
CN103425930B (zh) | 一种在线实时脚本检测方法及系统 | |
CN101719906A (zh) | 一种基于蠕虫传播行为的蠕虫检测方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C53 | Correction of patent of invention or patent application | ||
CB02 | Change of applicant information |
Address after: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Applicant after: Beijing Antiy Electronic Installation Co., Ltd. Address before: 100084, 2B-521, bright city, No. 1, Nongda South Road, Beijing, Haidian District Applicant before: Beijing Antiy Electronic Installation Co., Ltd. |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 100080 Beijing city Haidian District minzhuang Road No. 3, Tsinghua Science Park Building 1 Yuquan Huigu a Patentee after: Beijing ahtech network Safe Technology Ltd Address before: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Malicious code detecting method and system based on network packet Effective date of registration: 20190719 Granted publication date: 20150107 Pledgee: Bank of Longjiang, Limited by Share Ltd, Harbin Limin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2019230000008 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20210810 Granted publication date: 20150107 Pledgee: Bank of Longjiang Limited by Share Ltd. Harbin Limin branch Pledgor: BEIJING ANTIY NETWORK TECHNOLOGY Co.,Ltd. Registration number: 2019230000008 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |