CN106685963B - 一种恶意网络流量词库的建立方法及建立系统 - Google Patents
一种恶意网络流量词库的建立方法及建立系统 Download PDFInfo
- Publication number
- CN106685963B CN106685963B CN201611243293.1A CN201611243293A CN106685963B CN 106685963 B CN106685963 B CN 106685963B CN 201611243293 A CN201611243293 A CN 201611243293A CN 106685963 B CN106685963 B CN 106685963B
- Authority
- CN
- China
- Prior art keywords
- word
- malicious
- normal
- word set
- filtering
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Health & Medical Sciences (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- Computing Systems (AREA)
- Virology (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Information Transfer Between Computers (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (4)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611243293.1A CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611243293.1A CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106685963A CN106685963A (zh) | 2017-05-17 |
CN106685963B true CN106685963B (zh) | 2020-10-30 |
Family
ID=58872085
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611243293.1A Active CN106685963B (zh) | 2016-12-29 | 2016-12-29 | 一种恶意网络流量词库的建立方法及建立系统 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106685963B (zh) |
Families Citing this family (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107437038B (zh) * | 2017-08-07 | 2021-07-06 | 深信服科技股份有限公司 | 一种网页篡改的检测方法及装置 |
CN113163218A (zh) * | 2021-02-09 | 2021-07-23 | 百果园技术(新加坡)有限公司 | 直播间内用户的检测方法和系统、电子设备及存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102779249A (zh) * | 2012-06-28 | 2012-11-14 | 奇智软件(北京)有限公司 | 恶意程序检测方法及扫描引擎 |
CN103473506A (zh) * | 2013-08-30 | 2013-12-25 | 北京奇虎科技有限公司 | 用于识别恶意apk文件的方法和装置 |
CN104834857A (zh) * | 2015-03-27 | 2015-08-12 | 清华大学深圳研究生院 | 批量安卓恶意软件检测方法及装置 |
CN105740712A (zh) * | 2016-03-09 | 2016-07-06 | 哈尔滨工程大学 | 基于贝叶斯网络的Android恶意行为检测方法 |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10230747B2 (en) * | 2014-07-15 | 2019-03-12 | Cisco Technology, Inc. | Explaining network anomalies using decision trees |
-
2016
- 2016-12-29 CN CN201611243293.1A patent/CN106685963B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102779249A (zh) * | 2012-06-28 | 2012-11-14 | 奇智软件(北京)有限公司 | 恶意程序检测方法及扫描引擎 |
CN103473506A (zh) * | 2013-08-30 | 2013-12-25 | 北京奇虎科技有限公司 | 用于识别恶意apk文件的方法和装置 |
CN104834857A (zh) * | 2015-03-27 | 2015-08-12 | 清华大学深圳研究生院 | 批量安卓恶意软件检测方法及装置 |
CN105740712A (zh) * | 2016-03-09 | 2016-07-06 | 哈尔滨工程大学 | 基于贝叶斯网络的Android恶意行为检测方法 |
Also Published As
Publication number | Publication date |
---|---|
CN106685963A (zh) | 2017-05-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10095780B2 (en) | Automatically mining patterns for rule based data standardization systems | |
WO2019184217A1 (zh) | 热点事件分类方法、装置及存储介质 | |
CN105912514B (zh) | 基于指纹特征的文本复制检测系统及方法 | |
US20030014448A1 (en) | Method and system for normalizing dirty text in a document | |
CN106685964B (zh) | 基于恶意网络流量词库的恶意软件检测方法及系统 | |
CN106940799A (zh) | 文本图像处理方法和装置 | |
US8272051B1 (en) | Method and apparatus of information leakage prevention for database tables | |
CN108170806B (zh) | 敏感词检测过滤方法、装置和计算机设备 | |
CN112784009B (zh) | 一种主题词挖掘方法、装置、电子设备及存储介质 | |
CN112364625A (zh) | 文本筛选方法、装置、设备及存储介质 | |
CN106685963B (zh) | 一种恶意网络流量词库的建立方法及建立系统 | |
CN111858942A (zh) | 一种文本抽取方法、装置、存储介质和电子设备 | |
CN113282717B (zh) | 文本中实体关系的抽取方法、装置、电子设备及存储介质 | |
WO2023035362A1 (zh) | 用于模型训练的污染样本数据的检测方法及装置 | |
WO2024051196A1 (zh) | 恶意代码检测方法、装置、电子设备及存储介质 | |
CN108171060A (zh) | 基于信息熵识别加密变形脚本的方法、系统及存储介质 | |
CN112579781A (zh) | 文本归类方法、装置、电子设备及介质 | |
CN112163217B (zh) | 恶意软件变种识别方法、装置、设备及计算机存储介质 | |
CN114707026A (zh) | 网络模型训练方法、字符串检测方法、装置及电子设备 | |
CN111159996B (zh) | 基于文本指纹算法的短文本集合相似度比较方法及系统 | |
WO2014051015A1 (en) | Character recognition apparatus, method and program | |
US11349856B2 (en) | Exploit kit detection | |
CN113204954A (zh) | 基于大数据的数据检测方法、设备及计算机可读存储介质 | |
CN105373598A (zh) | 作弊站点识别方法及装置 | |
CN106598936B (zh) | 字母词的提取方法及装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB03 | Change of inventor or designer information | ||
CB03 | Change of inventor or designer information |
Inventor after: Chen Zhenxiang Inventor after: Wang Shanshan Inventor after: Yang Bo Inventor after: Zhao Chuan Inventor after: Sun Runyuan Inventor after: Jing Shan Inventor before: Wang Shanshan Inventor before: Chen Zhenxiang Inventor before: Yang Bo Inventor before: Zhao Chuan Inventor before: Sun Runyuan Inventor before: Jing Shan |
|
GR01 | Patent grant | ||
GR01 | Patent grant |