CN102984178B - 数据报文的检测方法及装置 - Google Patents
数据报文的检测方法及装置 Download PDFInfo
- Publication number
- CN102984178B CN102984178B CN201210593865.4A CN201210593865A CN102984178B CN 102984178 B CN102984178 B CN 102984178B CN 201210593865 A CN201210593865 A CN 201210593865A CN 102984178 B CN102984178 B CN 102984178B
- Authority
- CN
- China
- Prior art keywords
- domain name
- data message
- random
- parameters
- default
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 27
- 238000000034 method Methods 0.000 claims abstract description 38
- 230000004044 response Effects 0.000 claims description 43
- 238000012545 processing Methods 0.000 claims description 41
- 239000012141 concentrate Substances 0.000 claims description 15
- 230000008878 coupling Effects 0.000 claims description 12
- 238000010168 coupling process Methods 0.000 claims description 12
- 238000005859 coupling reaction Methods 0.000 claims description 12
- 230000008569 process Effects 0.000 claims description 9
- 230000013011 mating Effects 0.000 claims description 6
- 230000000694 effects Effects 0.000 abstract description 8
- 230000000903 blocking effect Effects 0.000 description 19
- 238000004364 calculation method Methods 0.000 description 5
- 241000287828 Gallus gallus Species 0.000 description 4
- 238000004458 analytical method Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000012360 testing method Methods 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000007667 floating Methods 0.000 description 2
- 238000013507 mapping Methods 0.000 description 2
- 206010033799 Paralysis Diseases 0.000 description 1
- 230000016571 aggressive behavior Effects 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 238000004140 cleaning Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000002474 experimental method Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 239000000203 mixture Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
Description
Claims (16)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210593865.4A CN102984178B (zh) | 2012-12-31 | 2012-12-31 | 数据报文的检测方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210593865.4A CN102984178B (zh) | 2012-12-31 | 2012-12-31 | 数据报文的检测方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102984178A CN102984178A (zh) | 2013-03-20 |
CN102984178B true CN102984178B (zh) | 2015-07-29 |
Family
ID=47857921
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210593865.4A Active CN102984178B (zh) | 2012-12-31 | 2012-12-31 | 数据报文的检测方法及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102984178B (zh) |
Families Citing this family (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104184585B (zh) * | 2013-05-28 | 2018-03-16 | 杭州迪普科技股份有限公司 | 一种防范dns洪水攻击的装置和方法 |
CN104378361A (zh) * | 2014-10-24 | 2015-02-25 | 苏州阔地网络科技有限公司 | 一种网络入侵检测方法及系统 |
CN105939321B (zh) * | 2015-12-07 | 2019-08-06 | 杭州迪普科技股份有限公司 | 一种dns攻击检测方法及装置 |
CN106357687A (zh) * | 2016-10-27 | 2017-01-25 | 成都知道创宇信息技术有限公司 | 一种通过dns请求进行数据传输来绕过防火墙检测的方法 |
CN108289084B (zh) * | 2017-01-10 | 2021-11-30 | 阿里巴巴集团控股有限公司 | 访问流量的阻断方法和装置及非暂态计算机可读存储介质 |
CN108667782B (zh) * | 2017-04-01 | 2021-03-23 | 贵州白山云科技股份有限公司 | 一种用于DNS服务的DDoS攻击防御方法及系统 |
CN108667831B (zh) * | 2018-04-27 | 2021-01-01 | 河海大学常州校区 | 一种易于部署和保护隐私的ddos预防服务系统 |
CN109120733B (zh) * | 2018-07-20 | 2021-06-01 | 杭州安恒信息技术股份有限公司 | 一种利用dns进行通信的检测方法 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101789940A (zh) * | 2010-01-28 | 2010-07-28 | 联想网御科技(北京)有限公司 | 一种防范dns请求报文洪泛攻击的方法及装置 |
CN102523311A (zh) * | 2011-11-25 | 2012-06-27 | 中国科学院计算机网络信息中心 | 非法域名识别方法及装置 |
CN102790807A (zh) * | 2011-05-16 | 2012-11-21 | 奇智软件(北京)有限公司 | 域名解析代理方法和系统、域名解析代理服务器 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8631489B2 (en) * | 2011-02-01 | 2014-01-14 | Damballa, Inc. | Method and system for detecting malicious domain names at an upper DNS hierarchy |
-
2012
- 2012-12-31 CN CN201210593865.4A patent/CN102984178B/zh active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101789940A (zh) * | 2010-01-28 | 2010-07-28 | 联想网御科技(北京)有限公司 | 一种防范dns请求报文洪泛攻击的方法及装置 |
CN102790807A (zh) * | 2011-05-16 | 2012-11-21 | 奇智软件(北京)有限公司 | 域名解析代理方法和系统、域名解析代理服务器 |
CN102523311A (zh) * | 2011-11-25 | 2012-06-27 | 中国科学院计算机网络信息中心 | 非法域名识别方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN102984178A (zh) | 2013-03-20 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102984178B (zh) | 数据报文的检测方法及装置 | |
CN109951500B (zh) | 网络攻击检测方法及装置 | |
CN109474575B (zh) | 一种dns隧道的检测方法及装置 | |
Jin et al. | Hop-count filtering: an effective defense against spoofed DDoS traffic | |
CN103297433B (zh) | 基于网络数据流的http僵尸网络检测方法及系统 | |
US10547636B2 (en) | Method and system for detecting and mitigating denial-of-service attacks | |
Hsu et al. | Fast-flux bot detection in real time | |
CN105681133B (zh) | 一种检测dns服务器是否防网络攻击的方法 | |
CN102739683B (zh) | 一种网络攻击过滤方法及装置 | |
US10735501B2 (en) | System and method for limiting access request | |
US20050278779A1 (en) | System and method for identifying the source of a denial-of-service attack | |
US8144603B2 (en) | Apparatuses and methods for detecting anomalous event in network | |
CN105553974A (zh) | 一种http慢速攻击的防范方法 | |
Guo et al. | Spoof detection for preventing dos attacks against dns servers | |
CN103152357A (zh) | 一种针对dns服务的防御方法、装置和系统 | |
CN102137111A (zh) | 一种防御cc攻击的方法、装置和内容分发网络服务器 | |
Rozekrans et al. | Defending against DNS reflection amplification attacks | |
EP2009864A1 (en) | Method and apparatus for attack prevention | |
Ghafir et al. | DNS traffic analysis for malicious domains detection | |
CN109756480B (zh) | 一种DDoS攻击防御方法、装置、电子设备及介质 | |
AbdelSalam et al. | An automated approach for preventing ARP spoofing attack using static ARP entries | |
Shin et al. | Unsupervised multi-stage attack detection framework without details on single-stage attacks | |
Alahari et al. | Performance analysis of denial of service dos and distributed dos attack of application and network layer of iot | |
TW202008749A (zh) | 網名過濾方法 | |
CN112788039A (zh) | 一种DDoS攻击识别方法、装置及存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
ASS | Succession or assignment of patent right |
Owner name: HILLSTONE NETWORKS COMMUNICATION TECHNOLOGY CO., L Free format text: FORMER OWNER: HILLSTONE NETWORKS (BEIJING) INC. Effective date: 20150624 |
|
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20150624 Address after: 215163 Jiangsu city of Suzhou province high tech Zone (Suzhou city) kolding Road No. 78 Gaoxin Software Park Building 7 floor 3 Applicant after: HILLSTONE NETWORKS Address before: 100085 Beijing city Haidian District on the seven Street No. 1 Huizhong 3 storey building Applicant before: Hillstone Networks Communication Technology (Beijing) Co., Ltd. |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address | ||
CP03 | Change of name, title or address |
Address after: 215163 No. 181 Jingrun Road, Suzhou High-tech Zone, Jiangsu Province Patentee after: SHANSHI NETWORK COMMUNICATION TECHNOLOGY CO., LTD. Address before: 215163 3rd Floor, 7th Building, High-tech Software Park, 78 Keling Road, Suzhou Science and Technology City, Jiangsu Province Patentee before: HILLSTONE NETWORKS |
|
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20220118 Address after: 215163 No. 181 Jingrun Road, Suzhou High-tech Zone, Jiangsu Province Patentee after: Shanshi Netcom Communication Technology Co.,Ltd. Patentee after: Jingyi Zhiyuan (Wuhan) Information Technology Co., Ltd Address before: 215163 No. 181 Jingrun Road, Suzhou High-tech Zone, Jiangsu Province Patentee before: Shanshi Netcom Communication Technology Co.,Ltd. |