CN113987395A - Test website building method and system based on cloud service WEB monitoring - Google Patents
Test website building method and system based on cloud service WEB monitoring Download PDFInfo
- Publication number
- CN113987395A CN113987395A CN202111210279.2A CN202111210279A CN113987395A CN 113987395 A CN113987395 A CN 113987395A CN 202111210279 A CN202111210279 A CN 202111210279A CN 113987395 A CN113987395 A CN 113987395A
- Authority
- CN
- China
- Prior art keywords
- page
- test website
- website
- test
- content
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/90—Details of database functions independent of the retrieved data types
- G06F16/95—Retrieval from the web
- G06F16/958—Organisation or management of web site content, e.g. publishing, maintaining pages or automatic linking
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/36—Preventing errors by testing or debugging software
- G06F11/3664—Environments for testing or debugging software
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1416—Event detection, e.g. attack signature detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/145—Countermeasures against malicious traffic the attack involving the propagation of malware through the network, e.g. viruses, trojans or worms
Abstract
The application discloses a test website building method and a test website building system based on cloud service WEB monitoring, wherein the method comprises the steps of obtaining relevant programs and codes for building a test website; activating a test website based on the relevant program and code; setting a page level of a test website and a page of a corresponding page level based on requirements; adding page content of the corresponding page based on requirements; completing the construction of a test website; the system comprises a program acquisition module, an activation module, a page hierarchy setting module, a page content adding module and a website building module. According to the method and the device, the page level of the test website can be flexibly set based on the requirement, and the corresponding page content can be flexibly added based on the requirement, so that the building requirement of the test website based on the WEB monitoring of the cloud service is met.
Description
Technical Field
The invention relates to the technical field of network security, in particular to a test website building method and system based on cloud service WEB monitoring.
Background
At present, with the rapid development of the internet, the domestic network attack behavior has the characteristics of diversification and normalization. How to discover various network attack behaviors in time and reduce the loss caused by attack becomes a key research point in the field of information security. Each enterprise should take technical measures for monitoring and recording network running state and network security events, should not set up malicious programs, and should immediately take remedial measures when finding that the network products and services have risks such as security defects and vulnerabilities.
In the related technology, a website is usually detected by adopting a website monitoring platform, and the detected content mainly comprises corresponding website availability, content tampering, sensitive words, a hidden link, a hung horse, webpage bugs and the like. The website monitoring platform firstly solves the problem of website resource acquisition, acquires resource links loaded by default and loaded by event triggering as much as possible aiming at different websites so as to meet the monitoring requirements of dealing with malicious network attack behaviors such as content tampering, linking, horse hanging and the like.
Most products at present adopt a cloud monitoring mode to monitor a client website in real time, partial monitoring types need a multi-level and multi-page website to verify, conventional website building technologies can only meet the requirement of rich content of a home page, multi-level tasks cannot be created when a test website is built, and multi-level page content cannot be added and adjusted.
Disclosure of Invention
In order to solve the problems that the conventional website building mode only can meet the rich content of a home page, multi-level tasks cannot be created when a test website is built, and multi-level page content cannot be added and adjusted, the test website building method and the test website building system based on cloud service WEB monitoring are provided.
The test website building method based on cloud service WEB monitoring adopts the following technical scheme:
a test website building method based on cloud service WEB monitoring comprises the following steps:
acquiring a test website to set up a relevant program and code;
activating the test website based on the related program and code;
setting a page level of the test website and a page corresponding to the page level based on requirements;
adding page content corresponding to the page based on requirements;
and completing the construction of the test website.
By adopting the technical scheme, when the built website is a test website, the page level of the test website can be flexibly set based on the requirement, and the corresponding page content can be flexibly added based on the requirement, so that the building requirement of the test website based on the WEB monitoring of the cloud service is met.
Optionally, the activating the test website based on the related program and code includes:
creating a switch program corresponding to the test website, wherein the switch program comprises a starting script for starting the test website, a closing script for closing the test website and an initialization script for initializing the test website;
executing the opening script to open the test website based on requirements;
or the like, or, alternatively,
and executing the initialization script based on requirements to initialize the test website.
By adopting the technical scheme, the test website is started through the switch script in the switch program when the test website is started for the first time, and the test website can be initialized through the initialization script when the test website needs to be initialized after the test website is used, so that the test website can be restarted.
Optionally, the setting, based on the requirement, a page level of the test website and a page corresponding to the page level includes:
setting the page level of the test website based on requirements;
and respectively setting the page number of each level of the test website based on requirements.
By adopting the technical scheme, the page level of the test website and the page corresponding to the page level can be flexibly set based on the requirement.
Optionally, the adding the page content corresponding to the page based on the requirement includes:
saving various different page contents to be added based on requirements and supplementing the page contents according to the requirements;
judging whether the corresponding page content needs to be added to the page or not;
if not, skipping to the next page content and repeating the previous step;
if so, judging whether the type of the added page content is specified page addition or all page addition;
if the page is added for the appointed page, adding the page content to the appointed page;
if the page content is added to all the pages, adding the page content to all the pages;
and jumping to the next page content after the addition is finished until all the page contents are judged whether to be added or not.
By adopting the technical scheme, when the page content needs to be added, whether different page contents are added in a designated page or all pages can be judged according to requirements, so that the page content is flexibly added in the corresponding page.
Optionally, the adding the page content to the specified page further includes:
if the page is added to the designated page, selecting a specific level based on the requirement;
adding the page content to the selected page based on the selected tier.
By adopting the technical scheme, when the added page content is added to the appointed page, the specific level can be selected for adding based on the requirement, a multi-level test environment can be set up for the website, and the problem hidden under the multi-level link can be found when the test website is monitored conveniently.
Optionally, the content of the page to be added is malicious content that can be used as a network attack behavior;
respectively creating folders in which corresponding malicious contents are stored, and respectively creating executive programs pointing to different malicious contents;
the adding the corresponding page content to the page comprises:
calling a corresponding executive program based on the requirement;
and adding malicious content to the page through the corresponding executive program.
By adopting the technical scheme, when the test website is monitored based on cloud service WEB monitoring, the corresponding malicious content is added to the page by calling the corresponding executive program, so that whether the added malicious content of the test website can be detected or not can be observed, a tester can quickly and conveniently present the required content on the test website, and the timeliness and the accuracy of website monitoring are integrally increased.
Optionally, before completing the building of the test website, the method further includes:
setting the information added to the page as key information;
generating an information overview based on the added key information;
checking whether the added key information is error-free based on the information overview;
if not, resetting the key information and returning to the previous step;
if yes, storing the key information, issuing a construction task, and constructing the test website based on the construction task.
By adopting the technical scheme, as more key information is added to the page in the website building process, the specific position of filling the key information needs to be recorded, all the added key information can be displayed through the information overview, and the website can be conveniently checked at any time.
Test website system of setting up based on monitoring of cloud service WEB includes:
the system comprises a program acquisition module, an activation module, a page hierarchy setting module, a page content adding module and a website building module;
the program acquisition module is used for acquiring a test website construction related program and code;
the activation module is used for activating the test website based on the related program and the code;
the page level setting module is used for setting the page level of the test website and the page corresponding to the page level based on requirements;
the page content adding module is used for adding page content corresponding to the page based on requirements;
and the website building module is used for completing the building of the test website.
By adopting the technical scheme, the program acquisition module acquires a test website building related program and a code, the activation module activates the test website based on the related program and the code, the page level setting module sets the page level of the test website and the page corresponding to the page level based on requirements, the page content adding module adds the page content corresponding to the page based on requirements, and the website building module completes the test website building so that the page level of the test website can be flexibly set based on requirements when the built website is the test website.
In summary, the present application includes at least one of the following beneficial technical effects:
1. when the built website is a test website, the page level of the test website can be flexibly set based on the requirement, and the corresponding page content can be flexibly added based on the requirement, so that the building requirement of the test website based on the WEB monitoring of the cloud service can be met;
2. when the added page content is added to the designated page, a specific hierarchy can be selected for addition based on requirements, a multi-hierarchy test environment can be set up for a website, and the problem hidden under multi-hierarchy links can be conveniently found;
3. when a test website is monitored based on cloud service WEB monitoring, corresponding malicious content is added to a page by calling a corresponding executive program, so that whether the added malicious content of the test website can be detected or not can be observed, a tester can quickly and conveniently present the required content on the test website, and the timeliness and the accuracy of website monitoring are integrally improved.
Drawings
FIG. 1 is a schematic flowchart of a test website building method based on cloud service WEB monitoring according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of step S1200 in an embodiment of the test website building method based on cloud service WEB monitoring according to the present application;
fig. 3 is a schematic flowchart of step S1300 in an embodiment of the test website building method based on cloud service WEB monitoring according to the present application;
fig. 4 is a schematic flowchart of step S1400 in an embodiment of the test website building method based on cloud service WEB monitoring according to the present application;
fig. 5 is a schematic flowchart of step S4500 in an embodiment of the test website building method based on cloud service WEB monitoring according to the present application;
fig. 6 is a schematic flowchart of step S4200 in an embodiment of the method for building a test website based on cloud service WEB monitoring according to the present application;
fig. 7 is a schematic flowchart of the test website building method based on cloud service WEB monitoring according to an embodiment of the present application before step S1500.
Detailed Description
The present application is described in further detail below with reference to the attached drawings.
The embodiment of the application discloses a test website building method and system based on cloud service WEB monitoring.
Referring to fig. 1, a test website building method based on cloud service WEB monitoring includes the following steps:
s1100, acquiring a test website to build a related program and a code.
The method comprises the steps that a program and a code related to a website are set up in an initialization state and are in a compression state, so that storage and transfer are facilitated, the related program and the code comprise an executive program of an installation website and an executive program of background management, the executive program of the installation website comprises an installation program 'install.exe' of an installation test website, the 'install.exe' is an executable file in a system, Tomcat can be automatically installed in a hardware system by running the 'install.exe', the Tomcat is a Web application server, and when the Tomcat is installed, an access request of a network page can be responded by using the Tomcat. The method comprises the steps that a Tomcat-sandbox folder is generated under a folder/opt directory by running 'install.exe', the folder is a file sandbox of a test website, and scripts or programs such as a file storage path script, an opening script, a closing script and a website initialization script are loaded in the file sandbox corresponding to the test website respectively.
S1200, activating a test website based on the relevant programs and codes.
After the test website is activated, the test website is on line in an internal local area network or on line in a public network, the test website can be accessed and monitored through cloud service WEB detection, and whether the test website is attacked by a network or has related malicious network attack behaviors is detected.
S1300, setting the page level of the test website and the page of the corresponding page level based on the requirement.
When the test website is monitored by conventional means, the more the number of the set page levels, the more the number of the monitored pages of the website, and the longer the monitoring time, the more the page levels of the test website and the pages of the corresponding page levels need to be set based on the requirements.
And S1400, adding the page content of the corresponding page based on the requirement.
The page content is the content of the test website loaded on the page of the test website, the page content is the content of the corresponding test website needing to be monitored, the more the page content is, the longer the monitoring time of the test website is, and the monitoring performance of the monitoring platform can be effectively tested.
And S1500, completing the construction of the test website.
The implementation principle of the test website building method based on cloud service WEB monitoring in the embodiment of the application is as follows: when a test website is built, a relevant program and a code of the test website need to be acquired firstly, the test website is activated based on the relevant program and the code, a page level of the test website and a page corresponding to the page level are set based on requirements, page content of the corresponding page is added based on the requirements, and finally the test website building is completed, so that the building requirement of the test website based on the WEB monitoring of the cloud service can be met, and when the requirement is that the corresponding page content is set for the page at the preset page level, the relevant setting can be met.
Referring to fig. 2, activating a test website based on a relevant program and code includes the following steps:
s2100, a switch program corresponding to the test website is created, and the switch program comprises a starting script for starting the test website, a closing script for closing the test website and an initialization script for initializing the test website.
The starting script for starting the test website has the function of starting the test website and enabling the test website to be online to allow relevant access, the closing script for closing the test website has the function of closing the test website and limiting the outside to continue accessing the test website, and the initialization script for initializing the test website has the function of initializing the test website.
S2200, executing the opening script based on the requirement to open the test website.
The method comprises the steps that a starting script is 'start.sh', a test website can be started by executing the 'start.sh' script, and when the 'start.sh' script is operated, the 'start.sh' judges whether the test website is in an opening state at present, if the test website is in the opening state, the opening is ignored, and if the test website is in a closing state, an opening code is called, and the accurate time for opening the test website is recorded in a log.
And S2300, or executing the initialization script to initialize the test website based on the requirement.
The method has the advantages that different types of combined tests can be used in the test process, various test schemes are continuously changed along with the test, required scenes are correspondingly complicated, and a large amount of time and energy are consumed if the test website with various scenes is replaced, so that all other pages except the non-first page of the test website are cleared by executing the initialization script, and the time consumption caused by frequent debugging of the pages is saved.
The closing script is stop.sh, the test website can be closed by executing the stop.sh script, when the closing script is executed, the closing script can judge whether the current test website is in a closing state, if the current test website is in the closing state, the test closing command is ignored, if the current test website is in an opening state, relevant codes of the closing website are called to close the test website, the accurate closing time of the test website is recorded in a log, and then the opening and closing records of the website are checked through the log to judge whether the early warning time of each monitoring platform is in time.
The implementation principle of activating the test website in the embodiment of the application is as follows: and starting the test website through the starting script in the created switch program, or initializing the test website through the corresponding initialization script, so that the corresponding test website can be restored to the state before the relevant setting is not performed.
Referring to fig. 3, setting a page level of a test website and a page of a corresponding page level based on requirements includes the following steps:
and S3100, setting a page level of the test website based on the requirement.
The method includes the steps that the number of page hierarchies of a test website is set based on requirements, for example, when the number of website hierarchies required to be created is 5, 5 is written in the created page hierarchies, corresponding page layers are generated through a read layer command, the read layer is a code for setting the layers, then a folder is created through mkdir, the mkdir is a code for setting a directory file, a corresponding background can generate folders with directory numbers of 5, and the contents of 5 hierarchy pages are stored respectively, so that the multi-hierarchy requirements are met.
S3200, respectively setting the number of pages of each level of the test website based on requirements.
When the number of pages of each level needs to be set, for example, the number of pages of each level is 100, 100 links are respectively set, the corresponding number of pages is obtained through read pages, the read pages are codes for obtaining the corresponding number of pages, and a command is circularly copied to create a page with the name of x-x, wherein the former x in the x-x indicates the number of layers, the latter x indicates the number of pages of the layer, then a corresponding index file, namely an index file, is created in a folder, and the file content is the content preset by a first page, so that the requirement of multiple pages of the corresponding multiple levels is met.
The implementation principle of setting the page level of the test website and the page number of the corresponding page level based on the requirement in the embodiment of the application is as follows: and respectively setting the page level of the test website and the number of pages of the corresponding level, so that the requirement of multi-level and multi-page of the requirement can be met.
Referring to fig. 4, adding page content of a corresponding page based on a requirement includes the following steps:
s4100, saving various different page contents to be added based on requirements and supplementing the page contents according to the requirements.
The page content is the content to be loaded to the test website, and the test website needs to perform a relatively complicated test in an actual application process, so the page content needs to be additionally added and stored, for example, when the page content is a horse-hanging program, whether the page content needs to be loaded to the test website for testing can be identified and monitored, the horse-hanging program is a program for uploading the horse-hanging program on the website, when a visitor visits the visitor can hang the horse-hanging program, and due to the update iteration of the horse-hanging program, the monitoring means for different horse-hanging programs also need to be updated and iterated, so the page content needs to be added at any time, so that the completeness of the test and the monitoring performance of the monitoring website are increased.
S4200, judging whether the corresponding page content needs to be added to the page.
The method includes the steps that a plurality of page contents to be added need to be added, whether corresponding page contents need to be added or not can be judged according to requirements or schemes, for example, whether a horse-hanging program needs to be added or not can be judged, the horse-hanging program is to add malicious codes into a page, when the page added with the horse-hanging program is accessed, the diverted address can be automatically accessed or Trojan viruses can be downloaded, and therefore the malicious codes need to be monitored to reduce loss.
S4300, if not, skipping to the next page content and repeating the previous step.
When the selection is no, it is stated that the current page content is not to be added to the page, at this time, the next page content to be added is skipped to, and the previous step is repeated, and whether the next page content needs to be added is determined, for example, when the current page content is a horse hanging program, the selection is not to be added, and when the next page content is a sensitive word, the determination is still made whether the sensitive word needs to be added to the page.
S4400, if yes, judging whether the type of the added page content is the specified page adding or the all page adding.
If the selection is yes, the page content needs to be added to the page of the test website, and at this time, whether the type of the added page content is specified page adding or all page adding needs to be judged according to the requirement, for example, when the monitoring requirement is that the specified page is monitored, the page is specified to be added, and when the monitoring requirement is that all pages are monitored, all pages are added.
And S4500, if the page is added to the designated page, adding the page content to the designated page.
When the page is added to the designated page, the page content is added to the designated page, and the label of the specific page to be added needs to be input, so that the page can be added to the corresponding page according to the label.
S4600, if the page content is added to all the pages, adding the page content to all the pages.
If the page content is added to all the pages of the test website, corresponding page content is added to all the pages of the test website, namely a type.sh script is called, the type.sh script obtains the content in a content folder of the type page, and the obtained file or picture is added to the test website.
S4700, jumping to the next page content after the adding is finished until all the page contents are judged whether to be added or not.
The number of the page contents which can be added to the test website is limited, for example, the page contents which are added to the test website are contents which can be normally accessed, and also can be malicious codes or contents such as a horse hanging program, sensitive words and sensitive pictures, a dark chain and vulnerability codes, so that the corresponding page contents are sequentially added until all the page contents are judged whether to be added, and omission in the page content adding process is reduced.
The implementation principle of adding the page content of the corresponding page based on the requirement in the embodiment of the application is as follows: and respectively adding corresponding page contents based on requirements, and adding according to the sequence of the page contents until all the page contents are judged whether to be added or not.
Referring to fig. 5, adding page content to a specified page further includes the steps of:
s5100, if the page is added to the designated page, a specific level is selected based on the requirement.
When adding the designated page, the sequence number of the added page is designated, namely the sequence number of x-x is designated, so that a specific sequence number can be selected based on requirements, for example, when adding the page of the twentieth page, the specific hierarchy addition needs to be selected based on requirements, and if the requirement is to select the second layer, the page with the page sequence number of 2-20 can be selected for addition.
S5200, adding the page content to the selected page based on the selected tier.
The implementation principle of adding page content to the specified page in the embodiment of the application further includes: when the added option is designated addition, the specific hierarchy is selected based on the requirement to add the page content to the page.
Referring to fig. 6, the content of the page to be added is malicious content that can be used as a network attack behavior, where the malicious content includes availability, tampering, sensitive words, a hidden link, a hung horse, a web page bug, and the like, and the malicious content causes a visitor to be maliciously attacked or lost;
respectively creating folders in which corresponding malicious contents are stored, wherein each folder only stores one malicious content, for example, a Trojan program file is stored in a Trojan program storage folder, a sensitive word file is stored in a sensitive word folder, and other different malicious code files are stored in other corresponding malicious code folders;
respectively creating executive programs pointing to different malicious contents, wherein the executive programs are pointing to corresponding folder storage paths, directly accessing malicious code files under the folders according to the configured storage paths and adding the malicious code files into a designated page, for example, a Trojan executive program pointing to a Trojan program, and when a certain page needs to be added with the Trojan program, the Trojan executive program does not return to the configured paths and acquires the contents in the Trojan program storage folder and adds the Trojan program to the selected page.
Adding corresponding page content to a page, comprising the steps of:
s6100 calls the corresponding execution program based on the requirement.
When the requirement is that a corresponding malicious program needs to be tested, a corresponding executive program is called based on the requirement, and if a Trojan horse executive program needs to be detected whether a Trojan horse program exists in a test website, the Trojan horse executive program can be called to select the corresponding Trojan horse program.
S6100, adding the malicious content to the page through the corresponding executive.
For example, when the malicious program to be added is a Trojan program, the Trojan execution program is called to obtain the content in the Trojan program storage folder, and the Trojan program is uploaded to the corresponding page.
The implementation principle of adding corresponding page content to a page in the embodiment of the application is as follows: and when the corresponding page content needs to be added to the page, the corresponding executive program needs to be called, and the malicious content is added to the page through the corresponding executive program.
Referring to fig. 7, before completing the test website building, the method further includes the following steps:
s7100, setting the information related to the page as key information.
The information related to the page comprises a specific level and a page sequence number of page content setting, namely a specific position of page content adding, and when each monitoring platform monitors the page content, searching and checking can be conveniently carried out.
And S7200, generating an information overview based on the added key information.
All key information can be displayed in the information overview, and specific adding positions of the key information are displayed, for example, a 'Trojan.exe' program is added to a first page, the 'Trojan.exe' program is a Trojan program, a 'test.jpg' program is added to a tenth page of a third layer, and the like, and the 'test.jpg' is a picture.
S7300, checking whether the added key information is correct or not based on the information overview.
The added key information can be checked through the information overview, and whether the specific position of the added key information has an error or not is checked.
And S7400, if not, resetting the key information and returning to the previous step.
If not, the setting error of the key information is described, the error type includes a page content type error or a set specific position error, and the like, and the setting needs to be performed again and the previous step is returned to perform the checking again.
And S7500, if yes, storing the key information and issuing a construction task, and constructing the test website based on the construction task.
When the key information is correct, setting modes such as key information position and type are correct, a setting task can be issued when the setting mode of the key information is correct, a test website is set up through a related program, the related program comprises a test website bottom layer service creation function and a related folder for creating storage page content, and the test website bottom layer service comprises: creating a website switch program, creating various file storage paths, testing a website uninstalling program, creating a website data transmission service framework and the like.
The implementation principle of the steps before the test website is built is as follows: the added key information is convenient to check by generating the information overview corresponding to the key information, the reset key information is required to be returned when the key information is checked to be wrong, the construction task can be issued to construct the test website only when the key information is checked to be correct, and the key information is checked to reduce the error in the test process through the information overview because the monitoring and testing requirements of the test website are large.
The test website building system based on cloud service WEB monitoring comprises a program acquisition module, an activation module, a page level setting module, a page content adding module and a website building module; the program acquisition module is used for acquiring a test website construction related program and code; the activation module is used for activating the test website based on the related program and the code; the page level setting module is used for setting the page level of the test website and the page corresponding to the page level based on requirements; the page content adding module is used for adding page content of a corresponding page based on requirements; and the website building module is used for completing building of the test website.
The implementation principle of the test website building system based on cloud service WEB monitoring in the embodiment of the application is as follows: acquiring a relevant program and a code of a test website through a program acquisition module, and activating the test website by an activation module based on the relevant program and the code; the page level setting module sets a page level of the test website and a page corresponding to the page level based on the requirement, and the page content adding module adds page content of the corresponding page based on the requirement; the website building module completes building of a test website, enables the page level of the test website to be flexibly set based on requirements, and simultaneously can add page content of a corresponding level based on requirements, and meets the building requirements of the test website based on cloud service WEB monitoring.
The above embodiments are preferred embodiments of the present application, and the protection scope of the present application is not limited by the above embodiments, so: all equivalent changes made according to the structure, shape and principle of the present application shall be covered by the protection scope of the present application.
Claims (8)
1. A test website building method based on cloud service WEB detection is characterized by comprising the following steps:
acquiring a test website to set up a relevant program and code;
activating the test website based on the related program and code;
setting a page level of the test website and a page corresponding to the page level based on requirements;
adding page content corresponding to the page based on requirements;
and completing the construction of the test website.
2. The method of claim 1, wherein activating the test website based on the associated program and code comprises:
creating a switch program corresponding to the test website, wherein the switch program comprises a starting script for starting the test website, a closing script for closing the test website and an initialization script for initializing the test website;
executing the opening script to open the test website based on requirements;
or the like, or, alternatively,
and executing the initialization script based on requirements to initialize the test website.
3. The method of claim 1, wherein the setting of the page level of the test website and the page corresponding to the page level based on the requirement comprises:
setting the page level of the test website based on requirements;
and respectively setting the page number of each level of the test website based on requirements.
4. The method of claim 3, wherein adding page content corresponding to the page based on the demand comprises:
saving various different page contents to be added based on requirements and supplementing the page contents according to the requirements;
judging whether the corresponding page content needs to be added to the page or not;
if not, skipping to the next page content and repeating the previous step;
if so, judging whether the type of the added page content is specified page addition or all page addition;
if the page is added for the appointed page, adding the page content to the appointed page;
if the page content is added to all the pages, adding the page content to all the pages;
and jumping to the next page content after the addition is finished until all the page contents are judged whether to be added or not.
5. The method of claim 4, wherein adding the page content to the specified page further comprises:
if the page is added to the designated page, selecting a specific level based on the requirement;
adding the page content to the selected page based on the selected tier.
6. The method according to claim 4, wherein the page content to be added is malicious content that can act as a network attack;
respectively creating folders in which corresponding malicious contents are stored, and respectively creating executive programs pointing to different malicious contents;
the adding the corresponding page content to the page comprises:
calling a corresponding executive program based on the requirement;
and adding malicious content to the page through the corresponding executive program.
7. The method of claim 1, wherein before completing the test website building, further comprising:
setting the information added to the page as key information;
generating an information overview based on the added key information;
checking whether the added key information is error-free based on the information overview;
if not, resetting the key information and returning to the previous step;
if yes, storing the key information, issuing a construction task, and constructing the test website based on the construction task.
8. The utility model provides a test website system of setting up based on monitoring of cloud service WEB which characterized in that: the system comprises a program acquisition module, an activation module, a page hierarchy setting module, a page content adding module and a website building module;
the program acquisition module is used for acquiring a test website construction related program and code;
the activation module is used for activating the test website based on the related program and the code;
the page level setting module is used for setting the page level of the test website and the page corresponding to the page level based on requirements;
the page content adding module is used for adding page content corresponding to the page based on requirements;
and the website building module is used for completing the building of the test website.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111210279.2A CN113987395A (en) | 2021-10-18 | 2021-10-18 | Test website building method and system based on cloud service WEB monitoring |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111210279.2A CN113987395A (en) | 2021-10-18 | 2021-10-18 | Test website building method and system based on cloud service WEB monitoring |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113987395A true CN113987395A (en) | 2022-01-28 |
Family
ID=79739156
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111210279.2A Pending CN113987395A (en) | 2021-10-18 | 2021-10-18 | Test website building method and system based on cloud service WEB monitoring |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113987395A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115426203A (en) * | 2022-11-04 | 2022-12-02 | 北京珞安科技有限责任公司 | Industrial firewall and protection method thereof |
-
2021
- 2021-10-18 CN CN202111210279.2A patent/CN113987395A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115426203A (en) * | 2022-11-04 | 2022-12-02 | 北京珞安科技有限责任公司 | Industrial firewall and protection method thereof |
| CN115426203B (en) * | 2022-11-04 | 2023-03-24 | 北京珞安科技有限责任公司 | Industrial firewall and protection method thereof |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108595329B (en) | Application testing method and device and computer storage medium | |
| US20190370150A1 (en) | Methods and systems for isolating software components | |
| US9098636B2 (en) | White-box testing systems and/or methods in web applications | |
| KR101036679B1 (en) | Test case inheritance controlled via attributes | |
| US9846636B1 (en) | Client-side event logging for heterogeneous client environments | |
| US20100037100A1 (en) | Method and system for isolating software components | |
| CN106126423A (en) | The method of testing of game application, Apparatus and system | |
| US10803166B1 (en) | Automated determination of application privileges | |
| US9317398B1 (en) | Vendor and version independent browser driver | |
| US9430361B1 (en) | Transition testing model for heterogeneous client environments | |
| CN103177115A (en) | Method and device of extracting page link of webpage | |
| CN113391874A (en) | Virtual machine detection countermeasure method and device, electronic equipment and storage medium | |
| CN113987395A (en) | Test website building method and system based on cloud service WEB monitoring | |
| Kim et al. | {FuzzOrigin}: Detecting {UXSS} vulnerabilities in browsers through origin fuzzing | |
| CN106529281A (en) | Executable file processing method and device | |
| CN111625296B (en) | Method for protecting program by constructing code copy | |
| US7162717B1 (en) | Compressed file patcher | |
| CN111880804A (en) | Application program code processing method and device | |
| CN116775034A (en) | Method, device and equipment for constructing kernel observation program | |
| CN109426546A (en) | Using starting method and device, computer storage medium and equipment | |
| US10097565B1 (en) | Managing browser security in a testing context | |
| CN113485919A (en) | Test method, test device and computer readable storage medium | |
| CN108563564B (en) | Terminal man-machine interface testing method and system | |
| CN105610908B (en) | A kind of samba service implementing method and system based on Android device | |
| CN110633210B (en) | File execution method and device, storage medium and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |