CN104239796B - 0day漏洞的识别方法以及装置 - Google Patents
0day漏洞的识别方法以及装置 Download PDFInfo
- Publication number
- CN104239796B CN104239796B CN201410510398.3A CN201410510398A CN104239796B CN 104239796 B CN104239796 B CN 104239796B CN 201410510398 A CN201410510398 A CN 201410510398A CN 104239796 B CN104239796 B CN 104239796B
- Authority
- CN
- China
- Prior art keywords
- file
- leak
- detected
- module
- type
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
- G06F21/564—Static detection by virus signature recognition
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/57—Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
- G06F21/577—Assessing vulnerabilities and evaluating computer system security
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Health & Medical Sciences (AREA)
- Virology (AREA)
- General Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (12)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410510398.3A CN104239796B (zh) | 2014-09-28 | 2014-09-28 | 0day漏洞的识别方法以及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410510398.3A CN104239796B (zh) | 2014-09-28 | 2014-09-28 | 0day漏洞的识别方法以及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104239796A CN104239796A (zh) | 2014-12-24 |
CN104239796B true CN104239796B (zh) | 2017-04-19 |
Family
ID=52227838
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410510398.3A Active CN104239796B (zh) | 2014-09-28 | 2014-09-28 | 0day漏洞的识别方法以及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104239796B (zh) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107688743B (zh) * | 2017-08-14 | 2021-01-29 | 北京奇虎科技有限公司 | 一种恶意程序的检测分析方法及系统 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102043919A (zh) * | 2010-12-27 | 2011-05-04 | 北京安天电子设备有限公司 | 基于脚本虚拟机的漏洞通用检测方法和系统 |
CN102521542A (zh) * | 2011-12-19 | 2012-06-27 | 北京大学 | 一种计算机软件漏洞利用的捕获方法及系统 |
CN103310150A (zh) * | 2012-03-13 | 2013-09-18 | 百度在线网络技术(北京)有限公司 | 一种检测pdf漏洞的方法和装置 |
CN103902914A (zh) * | 2013-09-17 | 2014-07-02 | 北京安天电子设备有限公司 | 一种针对高级可持续威胁的溢出漏洞检测方法及系统 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20040064722A1 (en) * | 2002-10-01 | 2004-04-01 | Dinesh Neelay | System and method for propagating patches to address vulnerabilities in computers |
-
2014
- 2014-09-28 CN CN201410510398.3A patent/CN104239796B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102043919A (zh) * | 2010-12-27 | 2011-05-04 | 北京安天电子设备有限公司 | 基于脚本虚拟机的漏洞通用检测方法和系统 |
CN102521542A (zh) * | 2011-12-19 | 2012-06-27 | 北京大学 | 一种计算机软件漏洞利用的捕获方法及系统 |
CN103310150A (zh) * | 2012-03-13 | 2013-09-18 | 百度在线网络技术(北京)有限公司 | 一种检测pdf漏洞的方法和装置 |
CN103902914A (zh) * | 2013-09-17 | 2014-07-02 | 北京安天电子设备有限公司 | 一种针对高级可持续威胁的溢出漏洞检测方法及系统 |
Also Published As
Publication number | Publication date |
---|---|
CN104239796A (zh) | 2014-12-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104298923B (zh) | 漏洞类型识别方法以及装置 | |
KR101568224B1 (ko) | 소프트웨어 취약점 분석방법 및 분석장치 | |
CN105320883B (zh) | 文件安全加载实现方法及装置 | |
CN102902915B (zh) | 对文件行为特征进行检测的系统 | |
CN104537308B (zh) | 提供应用安全审计功能的系统及方法 | |
CN102902924B (zh) | 对文件行为特征进行检测的方法及装置 | |
Musa Shuaibu et al. | Systematic review of web application security development model | |
CN101950338A (zh) | 一种基于层次化漏洞威胁评估的漏洞修复方法 | |
CN102622435A (zh) | 一种检测黑链的方法和装置 | |
CN104239801B (zh) | 0day漏洞的识别方法以及装置 | |
CN104462985A (zh) | bat漏洞的检测方法以及装置 | |
Alenezi et al. | Open source web application security: A static analysis approach | |
Yuan et al. | Retrieving relevant CAPEC attack patterns for secure software development | |
CN114386032A (zh) | 电力物联网设备的固件检测系统及方法 | |
CN109388946A (zh) | 恶意进程检测方法、装置、电子设备及存储介质 | |
Li et al. | Large-scale third-party library detection in android markets | |
CN113158197A (zh) | 一种基于主动iast的sql注入漏洞检测方法、系统 | |
CN105791250B (zh) | 应用程序检测方法及装置 | |
Yan et al. | Detection method of the second-order SQL injection in Web applications | |
CN104579819A (zh) | 网络安全检测方法以及装置 | |
KR20160090566A (ko) | 유효마켓 데이터를 이용한 apk 악성코드 검사 장치 및 방법 | |
CN104239796B (zh) | 0day漏洞的识别方法以及装置 | |
CN106529287A (zh) | 应用漏洞自动加固的方法及装置 | |
CN106650439A (zh) | 检测可疑应用程序的方法及装置 | |
CN106407815A (zh) | 漏洞检测方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee after: Beijing Qizhi Business Consulting Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Qizhi software (Beijing) Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210616 Address after: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee after: Beijing Hongteng Intelligent Technology Co.,Ltd. Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park) Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Patentee before: Beijing Qizhi Business Consulting Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee after: Sanliu0 Digital Security Technology Group Co.,Ltd. Address before: 100016 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing Patentee before: Beijing Hongteng Intelligent Technology Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |