CN106685963A - 一种恶意网络流量词库的建立方法及建立系统 - Google Patents
一种恶意网络流量词库的建立方法及建立系统 Download PDFInfo
- Publication number
- CN106685963A CN106685963A CN201611243293.1A CN201611243293A CN106685963A CN 106685963 A CN106685963 A CN 106685963A CN 201611243293 A CN201611243293 A CN 201611243293A CN 106685963 A CN106685963 A CN 106685963A
- Authority
- CN
- China
- Prior art keywords
- word
- malice
- word set
- normal
- network flow
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Health & Medical Sciences (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- Virology (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611243293.1A CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611243293.1A CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106685963A true CN106685963A (zh) | 2017-05-17 |
CN106685963B CN106685963B (zh) | 2020-10-30 |
Family
ID=58872085
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611243293.1A Active CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106685963B (zh) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107437038A (zh) * | 2017-08-07 | 2017-12-05 | 深信服科技股份有限公司 | 一种网页篡改的检测方法及装置 |
CN113163218A (zh) * | 2021-02-09 | 2021-07-23 | 百果园技术(新加坡)有限公司 | 直播间内用户的检测方法和系统、电子设备及存储介质 |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102779249A (zh) * | 2012-06-28 | 2012-11-14 | 奇智软件(北京)有限公司 | 恶意程序检测方法及扫描引擎 |
CN103473506A (zh) * | 2013-08-30 | 2013-12-25 | 北京奇虎科技有限公司 | 用于识别恶意apk文件的方法和装置 |
CN104834857A (zh) * | 2015-03-27 | 2015-08-12 | 清华大学深圳研究生院 | 批量安卓恶意软件检测方法及装置 |
US20160036844A1 (en) * | 2014-07-15 | 2016-02-04 | Cisco Technology, Inc. | Explaining network anomalies using decision trees |
CN105740712A (zh) * | 2016-03-09 | 2016-07-06 | 哈尔滨工程大学 | 基于贝叶斯网络的Android恶意行为检测方法 |
-
2016
- 2016-12-29 CN CN201611243293.1A patent/CN106685963B/zh active Active
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102779249A (zh) * | 2012-06-28 | 2012-11-14 | 奇智软件(北京)有限公司 | 恶意程序检测方法及扫描引擎 |
CN103473506A (zh) * | 2013-08-30 | 2013-12-25 | 北京奇虎科技有限公司 | 用于识别恶意apk文件的方法和装置 |
US20160036844A1 (en) * | 2014-07-15 | 2016-02-04 | Cisco Technology, Inc. | Explaining network anomalies using decision trees |
CN104834857A (zh) * | 2015-03-27 | 2015-08-12 | 清华大学深圳研究生院 | 批量安卓恶意软件检测方法及装置 |
CN105740712A (zh) * | 2016-03-09 | 2016-07-06 | 哈尔滨工程大学 | 基于贝叶斯网络的Android恶意行为检测方法 |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107437038A (zh) * | 2017-08-07 | 2017-12-05 | 深信服科技股份有限公司 | 一种网页篡改的检测方法及装置 |
CN107437038B (zh) * | 2017-08-07 | 2021-07-06 | 深信服科技股份有限公司 | 一种网页篡改的检测方法及装置 |
CN113163218A (zh) * | 2021-02-09 | 2021-07-23 | 百果园技术(新加坡)有限公司 | 直播间内用户的检测方法和系统、电子设备及存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN106685963B (zh) | 2020-10-30 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108376220A (zh) | 一种基于深度学习的恶意样本程序分类方法及系统 | |
CN107038178A (zh) | 舆情分析方法和装置 | |
CN106599155A (zh) | 一种网页分类方法及系统 | |
CN108399194A (zh) | 一种网络威胁情报生成方法及系统 | |
CN104408093A (zh) | 一种新闻事件要素抽取方法与装置 | |
CN102207961B (zh) | 一种网页自动分类方法及装置 | |
CN106685964A (zh) | 基于恶意网络流量词库的恶意软件检测方法及系统 | |
CN102033965A (zh) | 一种基于分类模型的数据分类方法及系统 | |
CN105574544A (zh) | 一种数据处理方法和装置 | |
CN104504151B (zh) | 微信舆情监测系统 | |
CN108509561B (zh) | 基于机器学习的岗位招聘数据筛选方法、系统及存储介质 | |
CN106685963A (zh) | 一种恶意网络流量词库的建立方法及建立系统 | |
CN110427628A (zh) | 基于神经网络算法的web资产分类检测方法及装置 | |
CN108540473A (zh) | 一种数据分析方法及数据分析装置 | |
CN109597987A (zh) | 一种文本还原方法、装置及电子设备 | |
CN104933171A (zh) | 兴趣点数据关联方法和装置 | |
CN108683649A (zh) | 一种基于文本特征的恶意域名检测方法 | |
CN105119910A (zh) | 基于模板的在线社交网络垃圾信息实时检测方法 | |
CN106650449A (zh) | 一种基于变量名混淆程度的脚本启发式检测方法及系统 | |
CN107229605A (zh) | 文本相似度的计算方法及装置 | |
CN108462624A (zh) | 一种垃圾邮件的识别方法、装置以及电子设备 | |
CN104850484B (zh) | 一种基于位图分析的字符终端交互状态自动判定方法 | |
CN106919627A (zh) | 热词的处理方法和装置 | |
CN113282686B (zh) | 一种不平衡样本的关联规则确定方法及装置 | |
CN104573055A (zh) | 一种网络账号快速检索的分词方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB03 | Change of inventor or designer information |
Inventor after: Chen Zhenxiang Inventor after: Wang Shanshan Inventor after: Yang Bo Inventor after: Zhao Chuan Inventor after: Sun Runyuan Inventor after: Jing Shan Inventor before: Wang Shanshan Inventor before: Chen Zhenxiang Inventor before: Yang Bo Inventor before: Zhao Chuan Inventor before: Sun Runyuan Inventor before: Jing Shan |
|
CB03 | Change of inventor or designer information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |