CN112769833A - 命令注入攻击的检测方法、装置、计算机设备和存储介质 - Google Patents
命令注入攻击的检测方法、装置、计算机设备和存储介质 Download PDFInfo
- Publication number
- CN112769833A CN112769833A CN202110037147.8A CN202110037147A CN112769833A CN 112769833 A CN112769833 A CN 112769833A CN 202110037147 A CN202110037147 A CN 202110037147A CN 112769833 A CN112769833 A CN 112769833A
- Authority
- CN
- China
- Prior art keywords
- injection attack
- data
- command injection
- data packet
- rule
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110037147.8A CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110037147.8A CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN112769833A true CN112769833A (zh) | 2021-05-07 |
CN112769833B CN112769833B (zh) | 2023-01-24 |
Family
ID=75701611
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110037147.8A Active CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112769833B (zh) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113486343A (zh) * | 2021-07-13 | 2021-10-08 | 深信服科技股份有限公司 | 一种攻击行为的检测方法、装置、设备和介质 |
CN114386023A (zh) * | 2021-12-30 | 2022-04-22 | 恒安嘉新(北京)科技股份公司 | 终端数据检测方法、装置、计算机设备及存储介质 |
CN114900352A (zh) * | 2022-04-25 | 2022-08-12 | 中国工商银行股份有限公司 | 旁路阻断方法、装置、电子设备、介质和程序产品 |
CN115348096A (zh) * | 2022-08-15 | 2022-11-15 | 中国电信股份有限公司 | 命令注入漏洞检测方法、系统、设备及存储介质 |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388763A (zh) * | 2007-09-12 | 2009-03-18 | 北京启明星辰信息技术有限公司 | 一种支持多种数据库类型的sql注入攻击检测系统 |
CN101425937A (zh) * | 2007-11-02 | 2009-05-06 | 北京启明星辰信息技术有限公司 | 一种适于高速局域网环境的sql注入攻击检测系统 |
CN104135490A (zh) * | 2014-08-14 | 2014-11-05 | 浪潮(北京)电子信息产业有限公司 | 入侵检测系统分析方法和入侵检测系统 |
WO2018018699A1 (zh) * | 2016-07-29 | 2018-02-01 | 广州市乐商软件科技有限公司 | 网站脚本攻击防范方法及装置 |
CN107657174A (zh) * | 2016-07-26 | 2018-02-02 | 北京计算机技术及应用研究所 | 一种基于协议指纹的数据库入侵检测方法 |
CN110417679A (zh) * | 2018-04-26 | 2019-11-05 | 阿里巴巴集团控股有限公司 | 规避旁路阻断的方法、装置和系统 |
-
2021
- 2021-01-12 CN CN202110037147.8A patent/CN112769833B/zh active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388763A (zh) * | 2007-09-12 | 2009-03-18 | 北京启明星辰信息技术有限公司 | 一种支持多种数据库类型的sql注入攻击检测系统 |
CN101425937A (zh) * | 2007-11-02 | 2009-05-06 | 北京启明星辰信息技术有限公司 | 一种适于高速局域网环境的sql注入攻击检测系统 |
CN104135490A (zh) * | 2014-08-14 | 2014-11-05 | 浪潮(北京)电子信息产业有限公司 | 入侵检测系统分析方法和入侵检测系统 |
CN107657174A (zh) * | 2016-07-26 | 2018-02-02 | 北京计算机技术及应用研究所 | 一种基于协议指纹的数据库入侵检测方法 |
WO2018018699A1 (zh) * | 2016-07-29 | 2018-02-01 | 广州市乐商软件科技有限公司 | 网站脚本攻击防范方法及装置 |
CN110417679A (zh) * | 2018-04-26 | 2019-11-05 | 阿里巴巴集团控股有限公司 | 规避旁路阻断的方法、装置和系统 |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113486343A (zh) * | 2021-07-13 | 2021-10-08 | 深信服科技股份有限公司 | 一种攻击行为的检测方法、装置、设备和介质 |
CN114386023A (zh) * | 2021-12-30 | 2022-04-22 | 恒安嘉新(北京)科技股份公司 | 终端数据检测方法、装置、计算机设备及存储介质 |
CN114900352A (zh) * | 2022-04-25 | 2022-08-12 | 中国工商银行股份有限公司 | 旁路阻断方法、装置、电子设备、介质和程序产品 |
CN115348096A (zh) * | 2022-08-15 | 2022-11-15 | 中国电信股份有限公司 | 命令注入漏洞检测方法、系统、设备及存储介质 |
CN115348096B (zh) * | 2022-08-15 | 2023-12-19 | 中国电信股份有限公司 | 命令注入漏洞检测方法、系统、设备及存储介质 |
Also Published As
Publication number | Publication date |
---|---|
CN112769833B (zh) | 2023-01-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN112887274B (zh) | 命令注入攻击的检测方法、装置、计算机设备和存储介质 | |
CN112769833B (zh) | 命令注入攻击的检测方法、装置、计算机设备和存储介质 | |
US9848016B2 (en) | Identifying malicious devices within a computer network | |
CN106411562B (zh) | 一种电力信息网络安全联动防御方法及系统 | |
US6279113B1 (en) | Dynamic signature inspection-based network intrusion detection | |
KR100468232B1 (ko) | 분산된 침입탐지 에이전트와 관리자 시스템을 이용한네트워크 기반 침입자 역추적 시스템 및 그 방법 | |
US20050182950A1 (en) | Network security system and method | |
US11463459B2 (en) | Network security intrusion detection | |
CN104811449A (zh) | 检测撞库攻击方法及系统 | |
EP4060958B1 (en) | Attack behavior detection method and apparatus, and attack detection device | |
CN109302421A (zh) | 应用系统安全防护策略优化方法及装置 | |
CN106302450A (zh) | 一种基于ddos攻击中恶意地址的检测方法及装置 | |
CN112822223B (zh) | 一种dns隐蔽隧道事件自动化检测方法、装置和电子设备 | |
CN113347184A (zh) | 网络流量安全检测引擎的测试方法、装置、设备及介质 | |
CN113098852A (zh) | 一种日志处理方法及装置 | |
CN109190408B (zh) | 一种数据信息的安全处理方法及系统 | |
KR101022167B1 (ko) | 네트워크 자산의 취약성을 고려한 침입탐지시스템의로그최적화 장치 | |
CN113037779B (zh) | 一种积极防御系统中的智能自学习白名单方法和系统 | |
CN113328976B (zh) | 一种安全威胁事件识别方法、装置及设备 | |
CN112565259B (zh) | 过滤dns隧道木马通信数据的方法及装置 | |
CN114050917A (zh) | 音频数据的处理方法、装置、终端、服务器及存储介质 | |
CN113596058A (zh) | 一种恶意地址的处理方法、装置、计算机设备和存储介质 | |
KR100870871B1 (ko) | 액세스레벨에서의 유해트래픽 차단장치 및 보안시스템 | |
CN114785542B (zh) | 一种木马检测方法、系统、电子设备和存储介质 | |
CN118138272A (zh) | 一种正则表达式拒绝服务攻击的防御方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB03 | Change of inventor or designer information |
Inventor after: Hou Tianqi Inventor after: Liang Yu Inventor after: Tian Ye Inventor after: Fu Qiang Inventor after: Wang Jie Inventor after: Yang Manzhi Inventor after: Cai Lin Inventor after: Jin Hong Inventor after: Chen Xiaoguang Inventor before: Waiting for tianqi Inventor before: Liang Yu Inventor before: Tian Ye Inventor before: Fu Qiang Inventor before: Wang Jie Inventor before: Yang Manzhi Inventor before: Cai Lin Inventor before: Jin Hong Inventor before: Chen Xiaoguang |
|
CB03 | Change of inventor or designer information | ||
GR01 | Patent grant | ||
GR01 | Patent grant |