CN102801698B - 一种基于url请求时序的恶意代码检测方法和系统 - Google Patents
一种基于url请求时序的恶意代码检测方法和系统 Download PDFInfo
- Publication number
- CN102801698B CN102801698B CN201110431041.2A CN201110431041A CN102801698B CN 102801698 B CN102801698 B CN 102801698B CN 201110431041 A CN201110431041 A CN 201110431041A CN 102801698 B CN102801698 B CN 102801698B
- Authority
- CN
- China
- Prior art keywords
- url
- model
- request
- time
- feature
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 25
- 238000000034 method Methods 0.000 claims abstract description 23
- 239000000284 extract Substances 0.000 claims description 41
- 238000012163 sequencing technique Methods 0.000 claims description 13
- 230000008878 coupling Effects 0.000 claims description 9
- 238000010168 coupling process Methods 0.000 claims description 9
- 238000005859 coupling reaction Methods 0.000 claims description 9
- 238000000605 extraction Methods 0.000 claims description 9
- 230000004048 modification Effects 0.000 claims description 4
- 238000012986 modification Methods 0.000 claims description 4
- 230000008569 process Effects 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 4
- 230000013011 mating Effects 0.000 description 4
- 230000000840 anti-viral effect Effects 0.000 description 3
- 230000008859 change Effects 0.000 description 3
- 238000001914 filtration Methods 0.000 description 3
- 238000010926 purge Methods 0.000 description 3
- 238000004458 analytical method Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 239000000203 mixture Substances 0.000 description 2
- 102100021257 Beta-secretase 1 Human genes 0.000 description 1
- 101710150192 Beta-secretase 1 Proteins 0.000 description 1
- 241000700605 Viruses Species 0.000 description 1
- 230000008485 antagonism Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000006378 damage Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000009792 diffusion process Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000010438 heat treatment Methods 0.000 description 1
- 208000015181 infectious disease Diseases 0.000 description 1
- 230000002123 temporal effect Effects 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
编号 | 时间 | URL |
1 | 0.864075 | a.example.com/3/Post.Asp |
2 | 1.605088 | x.example.com |
3 | 1.709422 | b.example.com |
4 | 1.904381 | a.example.com/3/Post.Asp |
5 | 2.394363 | c.example.com/channel/onSale.htm |
6 | 3.730177 | y.example.com |
7 | 3.884816 | z.example.com |
8 | 4.109969 | d.example.com/go/chn/ |
9 | 7.803808 | a.example.com/3/images/logo.gif |
10 | 8.081181 | a.example.com/home/js/base.js |
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110431041.2A CN102801698B (zh) | 2011-12-20 | 2011-12-20 | 一种基于url请求时序的恶意代码检测方法和系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201110431041.2A CN102801698B (zh) | 2011-12-20 | 2011-12-20 | 一种基于url请求时序的恶意代码检测方法和系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102801698A CN102801698A (zh) | 2012-11-28 |
CN102801698B true CN102801698B (zh) | 2015-01-07 |
Family
ID=47200664
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201110431041.2A Active CN102801698B (zh) | 2011-12-20 | 2011-12-20 | 一种基于url请求时序的恶意代码检测方法和系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102801698B (zh) |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105138912A (zh) * | 2015-09-25 | 2015-12-09 | 北京奇虎科技有限公司 | 钓鱼网站检测规则的自动生成方法及装置 |
CN105187439A (zh) * | 2015-09-25 | 2015-12-23 | 北京奇虎科技有限公司 | 钓鱼网站检测方法及装置 |
CN107909258A (zh) * | 2017-11-08 | 2018-04-13 | 国网山东省电力公司德州供电公司 | 一种电能表台区识别方法及系统 |
CN107888616B (zh) * | 2017-12-06 | 2020-06-05 | 北京知道创宇信息技术股份有限公司 | 基于URI的分类模型的构建方法和Webshell攻击网站的检测方法 |
CN107819789A (zh) * | 2017-12-07 | 2018-03-20 | 北京泛融科技有限公司 | 一种基于区块链的内容反劫持系统及方法 |
CN109040054B (zh) * | 2018-07-30 | 2020-12-04 | 杭州迪普科技股份有限公司 | 一种url过滤测试方法和装置 |
CN112202784B (zh) * | 2020-09-30 | 2023-04-18 | 成都新潮传媒集团有限公司 | 反爬虫方法、装置及存储介质 |
CN114389891B (zh) * | 2022-01-21 | 2022-10-14 | 四川睿创风行科技有限公司 | 一种web数据流转追踪系统 |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101350822A (zh) * | 2008-09-08 | 2009-01-21 | 南开大学 | 一种Internet恶意代码的发现和追踪方法 |
CN102111267A (zh) * | 2009-12-28 | 2011-06-29 | 北京安码科技有限公司 | 一种基于数字签名的网站安全保护方法及系统 |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20090047890A (ko) * | 2007-11-08 | 2009-05-13 | 한국전자통신연구원 | 검색 엔진을 이용한 악성 코드 유포 사이트 관리 방법,장치 및 시스템 |
WO2010095988A1 (en) * | 2009-02-18 | 2010-08-26 | Telefonaktiebolaget L M Ericsson (Publ) | User authentication |
-
2011
- 2011-12-20 CN CN201110431041.2A patent/CN102801698B/zh active Active
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101350822A (zh) * | 2008-09-08 | 2009-01-21 | 南开大学 | 一种Internet恶意代码的发现和追踪方法 |
CN102111267A (zh) * | 2009-12-28 | 2011-06-29 | 北京安码科技有限公司 | 一种基于数字签名的网站安全保护方法及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN102801698A (zh) | 2012-11-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102801698B (zh) | 一种基于url请求时序的恶意代码检测方法和系统 | |
CN106657044B (zh) | 一种用于提高网站系统安全防御的网页地址跳变方法 | |
CN101873259B (zh) | Sctp报文识别方法和装置 | |
CN110650128B (zh) | 一种检测以太坊数字货币盗取攻击的系统及方法 | |
CN102045305B (zh) | 一种多媒体资源传播的监测追踪方法和系统 | |
CN102523210B (zh) | 钓鱼网站检测方法及装置 | |
CN103297270A (zh) | 应用类型识别方法及网络设备 | |
WO2014187120A1 (zh) | 基于网页图标匹配的品牌仿冒网站检测方法 | |
CN103685598B (zh) | 在IPv6网络中发现活跃IP地址的方法及装置 | |
WO2009093226A3 (en) | A method and apparatus for fingerprinting systems and operating systems in a network | |
WO2015188431A1 (zh) | 资源的下载方法及装置 | |
CN107682470B (zh) | 一种检测nat地址池中公网ip可用性的方法及装置 | |
CN102843271A (zh) | 恶意url的形式化检测方法和系统 | |
CN104639391A (zh) | 一种生成网络流量记录的方法及相应的流量检测设备 | |
US8572366B1 (en) | Authenticating clients | |
KR101329034B1 (ko) | 에스엔에스 검색 서비스를 이용한 유알엘 수집 시스템 및 방법 | |
CN105635064B (zh) | Csrf攻击检测方法及装置 | |
CN102833262A (zh) | 基于whois信息的钓鱼网站收集、鉴定方法和系统 | |
CN105763543A (zh) | 一种识别钓鱼网站的方法及装置 | |
CN103209170A (zh) | 文件类型识别方法及识别系统 | |
CN102868773A (zh) | 检测dns黑洞劫持的方法、装置及系统 | |
CN104113598A (zh) | 一种数据库三层审计的方法 | |
WO2015078122A1 (zh) | 数据流的识别方法及设备 | |
CN106790073B (zh) | 一种Web服务器恶意攻击的阻断方法、装置及防火墙 | |
CN103136251A (zh) | 识别网页的方法和装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C53 | Correction of patent for invention or patent application | ||
CB02 | Change of applicant information |
Address after: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Applicant after: Beijing Antiy Electronic Installation Co., Ltd. Address before: 100084, 2B-521, bright city, No. 1, Nongda South Road, Beijing, Haidian District Applicant before: Beijing Antiy Electronic Installation Co., Ltd. |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: 100080 Beijing city Haidian District minzhuang Road No. 3, Tsinghua Science Park Building 1 Yuquan Huigu a Patentee after: Beijing ahtech network Safe Technology Ltd Address before: 100080 Haidian District City, Zhongguancun, the main street, No. 1 Hailong building, room 1415, room 14 Patentee before: Beijing Antiy Electronic Installation Co., Ltd. |
|
CP03 | Change of name, title or address | ||
PE01 | Entry into force of the registration of the contract for pledge of patent right |
Denomination of invention: Uniform resource locator (URL) request time sequence-based detection method and system for malicious codes Effective date of registration: 20190719 Granted publication date: 20150107 Pledgee: Bank of Longjiang, Limited by Share Ltd, Harbin Limin branch Pledgor: Beijing ahtech network Safe Technology Ltd Registration number: 2019230000008 |
|
PE01 | Entry into force of the registration of the contract for pledge of patent right | ||
PC01 | Cancellation of the registration of the contract for pledge of patent right |
Date of cancellation: 20210810 Granted publication date: 20150107 Pledgee: Bank of Longjiang Limited by Share Ltd. Harbin Limin branch Pledgor: BEIJING ANTIY NETWORK TECHNOLOGY Co.,Ltd. Registration number: 2019230000008 |
|
PC01 | Cancellation of the registration of the contract for pledge of patent right |