CN104618178B - 网站漏洞在线评估方法及装置 - Google Patents
网站漏洞在线评估方法及装置 Download PDFInfo
- Publication number
- CN104618178B CN104618178B CN201410838018.9A CN201410838018A CN104618178B CN 104618178 B CN104618178 B CN 104618178B CN 201410838018 A CN201410838018 A CN 201410838018A CN 104618178 B CN104618178 B CN 104618178B
- Authority
- CN
- China
- Prior art keywords
- leak
- website
- risk
- information
- risk assessment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000011156 evaluation Methods 0.000 title claims abstract description 25
- 238000012360 testing method Methods 0.000 claims abstract description 93
- 238000012502 risk assessment Methods 0.000 claims abstract description 45
- 238000000034 method Methods 0.000 claims abstract description 29
- 238000001514 detection method Methods 0.000 claims abstract description 17
- 230000004044 response Effects 0.000 claims description 18
- 230000005540 biological transmission Effects 0.000 claims description 12
- 238000011084 recovery Methods 0.000 abstract description 7
- 230000003449 preventive effect Effects 0.000 abstract description 6
- 238000002347 injection Methods 0.000 description 14
- 239000007924 injection Substances 0.000 description 14
- 230000006378 damage Effects 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 5
- 241000208340 Araliaceae Species 0.000 description 4
- 235000005035 Panax pseudoginseng ssp. pseudoginseng Nutrition 0.000 description 4
- 235000003140 Panax quinquefolius Nutrition 0.000 description 4
- 241000063534 Pseudaspius leptocephalus Species 0.000 description 4
- 239000000284 extract Substances 0.000 description 4
- 235000008434 ginseng Nutrition 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 208000027418 Wounds and injury Diseases 0.000 description 3
- 208000014674 injury Diseases 0.000 description 3
- 239000000243 solution Substances 0.000 description 3
- 230000015572 biosynthetic process Effects 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 238000012790 confirmation Methods 0.000 description 2
- 230000008439 repair process Effects 0.000 description 2
- 238000003786 synthesis reaction Methods 0.000 description 2
- 208000005374 Poisoning Diseases 0.000 description 1
- 206010070834 Sensitisation Diseases 0.000 description 1
- 150000001875 compounds Chemical class 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000001035 drying Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 231100000572 poisoning Toxicity 0.000 description 1
- 230000000607 poisoning effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000008313 sensitization Effects 0.000 description 1
- 238000012163 sequencing technique Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
字段名称 | 类型 | 备注 |
domain | char | 域名名称 |
telphone | char | 注册人电话 |
char | 注册人邮箱 | |
name | char | 注册人姓名 |
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410838018.9A CN104618178B (zh) | 2014-12-29 | 2014-12-29 | 网站漏洞在线评估方法及装置 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410838018.9A CN104618178B (zh) | 2014-12-29 | 2014-12-29 | 网站漏洞在线评估方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104618178A CN104618178A (zh) | 2015-05-13 |
CN104618178B true CN104618178B (zh) | 2018-01-30 |
Family
ID=53152469
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410838018.9A Active CN104618178B (zh) | 2014-12-29 | 2014-12-29 | 网站漏洞在线评估方法及装置 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN104618178B (zh) |
Families Citing this family (20)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105635121A (zh) * | 2015-12-23 | 2016-06-01 | 赛尔网络有限公司 | 一种基于厂商的漏洞严重等级分布统计方法、装置与系统 |
CN106649429B (zh) * | 2016-08-25 | 2019-09-17 | 北京知道未来信息技术有限公司 | 一种基于多维统计的漏洞危害等级快速评估方法和装置 |
CN106611126A (zh) * | 2016-12-22 | 2017-05-03 | 西北大学 | 一种漏洞严重性评估及修补方法 |
CN106506564B (zh) * | 2016-12-31 | 2020-02-07 | 北京神州绿盟信息安全科技股份有限公司 | 一种漏洞管理方法及装置 |
CN107425945A (zh) * | 2017-08-18 | 2017-12-01 | 太仓宏璟瑞远物业管理有限公司 | 一种通讯系统的风险性评估和校正方法 |
CN107360188B (zh) * | 2017-08-23 | 2020-03-17 | 杭州安恒信息技术股份有限公司 | 基于云防护和云监测系统的网站风险值评估方法及装置 |
CN107682224B (zh) * | 2017-10-09 | 2021-02-26 | 福建中金在线信息科技有限公司 | 一种网络web页面的测试方法及装置 |
CN107528860A (zh) * | 2017-10-12 | 2017-12-29 | 中国科学院计算机网络信息中心 | 网络安全测试方法、系统及存储介质 |
CN109992958A (zh) * | 2017-12-29 | 2019-07-09 | 国民技术股份有限公司 | 一种安全性评估方法及安全性评估设备 |
CN108809928B (zh) * | 2018-03-30 | 2021-02-12 | 小安(北京)科技有限公司 | 一种网络资产风险画像方法及装置 |
CN111277555B (zh) * | 2018-12-05 | 2022-03-11 | 中国移动通信集团河南有限公司 | 漏洞误报筛选方法及装置 |
CN110768945A (zh) * | 2018-12-24 | 2020-02-07 | 北京安天网络安全技术有限公司 | 一种网站安全运行情况的评估方法、装置及存储介质 |
CN109981600B (zh) * | 2019-03-06 | 2021-08-17 | 山东信天辰信息安全技术有限公司 | 一种网站加固的安全性评估系统 |
CN110855654B (zh) * | 2019-11-06 | 2021-10-08 | 中国移动通信集团广东有限公司 | 基于流量互访关系的漏洞风险量化管理方法和系统 |
CN111079150B (zh) * | 2019-11-25 | 2023-09-05 | 安天科技集团股份有限公司 | 补丁的漏洞风险评估方法、装置、电子设备及存储介质 |
CN111193727A (zh) * | 2019-12-23 | 2020-05-22 | 成都烽创科技有限公司 | 运行监测系统及运行监测方法 |
CN113051571B (zh) * | 2019-12-27 | 2022-11-29 | 中国移动通信集团湖南有限公司 | 一种误报漏洞的检测方法、装置及计算机设备 |
CN111666573A (zh) * | 2020-06-04 | 2020-09-15 | 杭州安恒信息技术股份有限公司 | 网站系统漏洞等级评估的方法、装置和计算机设备 |
CN112035843A (zh) * | 2020-08-20 | 2020-12-04 | 深信服科技股份有限公司 | 一种漏洞处理方法、装置、电子设备及存储介质 |
CN111967021B (zh) * | 2020-08-27 | 2022-06-03 | 山东英信计算机技术有限公司 | 一种漏洞处理方法、装置、设备及计算机可读存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101620653A (zh) * | 2008-07-04 | 2010-01-06 | 北京启明星辰信息技术股份有限公司 | 一种基于资产弱点分析的安全风险评估系统及方法 |
CN102457411A (zh) * | 2011-10-14 | 2012-05-16 | 中国人民解放军国防科学技术大学 | 基于不确定数据的网络安全态势模糊评估方法 |
CN103258165A (zh) * | 2013-05-10 | 2013-08-21 | 华为技术有限公司 | 漏洞测评的处理方法和装置 |
CN103647678A (zh) * | 2013-11-08 | 2014-03-19 | 北京奇虎科技有限公司 | 一种网站漏洞在线验证方法及装置 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9954883B2 (en) * | 2012-12-18 | 2018-04-24 | Mcafee, Inc. | Automated asset criticality assessment |
-
2014
- 2014-12-29 CN CN201410838018.9A patent/CN104618178B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101620653A (zh) * | 2008-07-04 | 2010-01-06 | 北京启明星辰信息技术股份有限公司 | 一种基于资产弱点分析的安全风险评估系统及方法 |
CN102457411A (zh) * | 2011-10-14 | 2012-05-16 | 中国人民解放军国防科学技术大学 | 基于不确定数据的网络安全态势模糊评估方法 |
CN103258165A (zh) * | 2013-05-10 | 2013-08-21 | 华为技术有限公司 | 漏洞测评的处理方法和装置 |
CN103647678A (zh) * | 2013-11-08 | 2014-03-19 | 北京奇虎科技有限公司 | 一种网站漏洞在线验证方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
CN104618178A (zh) | 2015-05-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104618178B (zh) | 网站漏洞在线评估方法及装置 | |
CN104618177A (zh) | 网站漏洞审核方法及装置 | |
CN101341717B (zh) | 评估和访问网络地址的方法 | |
Hao et al. | PREDATOR: proactive recognition and elimination of domain abuse at time-of-registration | |
US8646071B2 (en) | Method and system for validating site data | |
CN104506541A (zh) | 网站漏洞告警方法及装置 | |
CN106357696B (zh) | 一种sql注入攻击检测方法及系统 | |
US8583612B2 (en) | Whois server verifying whois records and search engine accesses | |
CN102739675B (zh) | 网站安全检测方法与装置 | |
US7475425B2 (en) | Internet site authentication service | |
CN106357640A (zh) | 基于区块链网络的身份认证方法、系统及服务器 | |
CN106789939B (zh) | 一种钓鱼网站检测方法和装置 | |
CN103634317A (zh) | 基于云安全对恶意网址信息进行安全鉴定的方法及系统 | |
CN107634967B (zh) | 一种CSRF攻击的CSRFToken防御系统和方法 | |
CN106357644A (zh) | 基于区块链网络的身份认证方法、系统及服务器 | |
CN108989355B (zh) | 一种漏洞检测方法和装置 | |
US20080189263A1 (en) | System and method for improving integrity of internet search | |
CN104580230B (zh) | 网站攻击验证方法及装置 | |
CN102724186A (zh) | 一种钓鱼网站检测系统和检测方法 | |
CN102664876A (zh) | 网络安全检测方法及系统 | |
JP2008547067A (ja) | 参照リソースの確率的解析に基づく不要な電子メールメッセージの検出 | |
CN106101145A (zh) | 一种网站漏洞检测方法及装置 | |
CN102769632A (zh) | 钓鱼网站分级检测和提示的方法及系统 | |
CN105407074A (zh) | 身份验证方法、装置及系统 | |
CN103268328B (zh) | 二维码的验证方法及搜索引擎服务器 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20161223 Address after: 100015 Jiuxianqiao Chaoyang District Beijing Road No. 10, building 15, floor 17, layer 1701-26, 3 Applicant after: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. Address before: 100088 Beijing city Xicheng District xinjiekouwai Street 28, block D room 112 (Desheng Park) Applicant before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Applicant before: Qizhi software (Beijing) Co.,Ltd. |
|
TA01 | Transfer of patent application right | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee after: Qianxin Technology Group Co.,Ltd. Address before: 100015 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing. Patentee before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. |
|
CP03 | Change of name, title or address | ||
TR01 | Transfer of patent right |
Effective date of registration: 20210105 Address after: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee after: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Patentee after: Qianxin Technology Group Co.,Ltd. Address before: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee before: Qianxin Technology Group Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee after: Qianxin Wangshen information technology (Beijing) Co.,Ltd. Patentee after: Qianxin Technology Group Co.,Ltd. Address before: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee before: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Patentee before: Qianxin Technology Group Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |