CN114629875B - Active detection domain name brand protection method and device - Google Patents
Active detection domain name brand protection method and device Download PDFInfo
- Publication number
- CN114629875B CN114629875B CN202210126386.5A CN202210126386A CN114629875B CN 114629875 B CN114629875 B CN 114629875B CN 202210126386 A CN202210126386 A CN 202210126386A CN 114629875 B CN114629875 B CN 114629875B
- Authority
- CN
- China
- Prior art keywords
- domain name
- brand
- domain
- names
- detected
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 34
- 238000001514 detection method Methods 0.000 title abstract description 16
- 238000004590 computer program Methods 0.000 claims description 14
- 239000000523 sample Substances 0.000 claims 1
- 230000008520 organization Effects 0.000 abstract description 4
- 238000012423 maintenance Methods 0.000 abstract description 3
- 238000010586 diagram Methods 0.000 description 4
- 230000008859 change Effects 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 230000001360 synchronised effect Effects 0.000 description 2
- 238000009825 accumulation Methods 0.000 description 1
- 238000013475 authorization Methods 0.000 description 1
- 230000000903 blocking effect Effects 0.000 description 1
- 238000013145 classification model Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- POSWICCRDBKBMH-UHFFFAOYSA-N dihydroisophorone Natural products CC1CC(=O)CC(C)(C)C1 POSWICCRDBKBMH-UHFFFAOYSA-N 0.000 description 1
- 239000000284 extract Substances 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/04—Processing captured monitoring data, e.g. for logfile generation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/06—Generation of reports
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Mining & Analysis (AREA)
- Storage Device Security (AREA)
Abstract
The application provides a domain name brand protection method, a device, computer equipment and a storage medium for active detection. The method comprises the following steps: acquiring all domain name keywords related to the protected brand name; combining the domain name keywords with all top-level domain names to be detected to obtain all domain names to be detected; and actively detecting the formed domain name to be detected to generate a domain name brand analysis report. The application obtains the domain name brand analysis report by combining all domain name keywords related to the organization brands and actively detecting whether the domain name keywords exist or not and analyzing website information, and is used for subsequent right maintenance and imitation warning.
Description
Technical Field
The present application relates to the field of DNS services, and in particular, to a method and apparatus for protecting domain name brands by active detection, a computer device, and a storage medium.
Background
Most of the existing Domain name protection programs are passive, for example, only a brand holder is limited to register a Domain name Protected by TMCH (trademark information exchange organization) and DPML ((Domain Protected MARKS LIST)), but the protection can only protect a Domain name string strictly consistent with a trademark from being maliciously registered, and most of fishing attacks now use a Domain name similar to a certain Domain name and copy the page content of the Domain name, so that the purpose of counterfeiting websites is achieved.
In another mode, the network crawlers are used for detecting fake websites with similar domain names and similar page contents, the sea fishing needle mode is large in workload, consumes a large amount of manpower and material resources, and is low in accuracy.
In addition, when the website is attacked, the website is subjected to passive means of de-authorization processing, such as URS, UDRP or legal means, and then the fake website and domain name are blocked and processed. However, since most of the attacker is a host deployed overseas, and after the domain name is often blocked, a new TLD suffix domain name is quickly started and re-online, which is not enough.
Therefore, how to design a method for actively detecting domain names related to organization brands, analyzing counterfeit domain names in the domain names and actively alarming is a technical problem to be solved at present.
Disclosure of Invention
Based on this, it is necessary to provide a domain name brand protection method, device, computer equipment and storage medium for active detection, which combine all domain name keywords related to the organization brands and actively detect whether the domain name keywords exist, analyze website information, and obtain a domain name brand analysis report for subsequent right maintenance and counterfeit alarms.
In a first aspect of the present invention, there is provided a domain name brand protection method for active detection, including:
Acquiring all domain name keywords related to the protected brand name;
Combining the domain name keywords with all top-level domain names to be detected to obtain all domain names to be detected;
And actively detecting the formed domain name to be detected to generate a domain name brand analysis report.
Further, obtaining all domain name keywords associated with the protected brand name includes:
Acquiring all misspelling keywords related to the brand name; and/or
Acquiring all related domain names containing brand names in the registered domain names, and extracting keyword strings of the related domain names;
And combining and merging the keyword strings and the misspelling keywords to obtain all domain name keywords related to the brand name.
Further, the obtaining all misspelled keywords related to the brand name comprises:
The misspelling keywords related to the brand name are obtained by misplanting the domain name, bit overturning the domain name, homophonic constructing the domain name and homophonic domain name.
Further, the actively detecting the formed domain name to be detected, and generating a domain name brand analysis report includes: detecting all formed domain names to be detected, detecting whether the domain names really exist, if so, continuing to detect whether the domain names are established, acquiring station establishment screenshots, acquiring domain name NS information, and finally comprehensively analyzing the station establishment information, the station establishment screenshots and the NS information to generate the domain name brand analysis report.
Further, downloading the required zone file of the top-level domain name through czds registration mechanism, monitoring the increment change of the zone file in real time, and starting the keyword expansion task when the change exists.
Further, whether the domain name really exists or not is judged through the WHOIS cluster detection subsystem.
Further, a website building screenshot is obtained through a PhantomJS interface.
In a second aspect of the present invention, there is provided an actively detected domain name brand protection device, comprising:
The domain name brand keyword acquisition module is used for acquiring all domain name keywords related to the protected brand name;
the domain name brand keyword extension module is used for combining the domain name keyword with all top-level domain names to be detected to obtain all domain names to be detected;
and the domain name analysis module is used for actively detecting the formed domain name to be detected and generating a domain name brand analysis report.
In a third aspect the invention provides a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing one of the methods according to the first aspect of the invention when executing the computer program.
In a fourth aspect of the invention, a computer-readable storage medium is provided, on which a computer program is stored which, when executed by a processor, implements one of the methods according to the first aspect of the invention.
The method, the device, the computer equipment and the storage medium for protecting the domain name brand of the active detection provided by the invention are characterized in that firstly, all domain name keywords related to the protected brand name are obtained, then all top-level domain names to be detected are subjected to full connection combination to obtain a list of all domain names to be detected, and finally, all domain names in the list are detected one by one through a message queue mode to detect a counterfeit domain name website and generate an alarm. And, at intervals, the updated data of the area file zonefile is actively acquired and re-detected and verified, so that the new increase of the counterfeit website can be timely broken.
Drawings
Fig. 1 is a flow chart of a domain name brand protection method of active probing in an embodiment of the present invention.
Fig. 2 is a schematic diagram of the domain name brand protection method of active probing in an embodiment of the present invention.
Fig. 3 is a schematic structural diagram of an actively detected domain name brand protection device according to an embodiment of the present invention.
Fig. 4 is a schematic structural diagram of a computer device according to an embodiment of the present invention.
Detailed Description
The present application will be described in further detail with reference to the drawings and examples, in order to make the objects, technical solutions and advantages of the present application more apparent. It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the application. In addition, descriptions of well-known functions and constructions are omitted for clarity and conciseness.
The terminology used herein is for the purpose of describing various embodiments of the invention only and is not intended to be limiting of the invention. The singular is intended to include the plural unless the context clearly indicates otherwise. In the present invention, it should be understood that the terms "comprises" or "comprising" indicate the presence of a feature, a number, a step, an operation, an element, a component, or a combination thereof, and do not preclude the presence or addition of one or more other features, numbers, steps, operations, elements, components, or groups thereof.
Example 1
Referring to fig. 1 and 2, a first embodiment of the present invention provides an actively detected domain name brand protection method, which includes:
Step S1, the area file zonefile provided by the Top Level Domain (TLD) is downloaded from CZDS, and all domain names that have been successfully registered in a certain top level domain are acquired through the area file. Meanwhile, whether the update exists in zonefile is monitored in real time, and if the update exists, the expansion combination is carried out on the updated part again.
CZDS (Centralized Zone DATA SERVICE) is an online portal provided by ICANN in which any interested participant can request access to a Zone file provided by the participating generic top level domain (gTLD) through which we obtain all domain names that have been successfully registered under a certain gTLD.
And S2, creating a brand domain name keyword expansion task, and acquiring all misspelling keywords related to the brand name.
Specifically, the protected brand name can be processed through the misspelling frame to obtain all related misspelling keywords related to the brand, wherein the related misspelling keywords comprise common Typosquatting misspelled domain names, domain names with bit reversal of Bitsquatting, new domain names with homonym structure of Soundsquatting, combosquatting combined rush to register domain names, rush to register domain names with different words of homograph-squatting, and rush to register domain names with level-squatting. For example: brand name is baidu, and the misspelled keywords comprise: bahdu, baadu, baiud, baidoo, ba1du, etc., these misspelled keywords have great similarity to the original brand name.
And S3, initiating a region file expansion request, and expanding the domain name of the region file to obtain all domain name keyword strings containing brand names.
Specifically, in the detection zone file, all related domain names including brand names in the domain names which are already registered are extracted, and keyword strings of all related domain names are extracted. For example, by obtaining the com's zone file, the domain name associated with baidu: ibaidu.com, ibaidu8.com, and then extracting keyword strings ibaidu, ibaidu of the respective domain names, and the like.
And S4, combining and merging all the obtained domain name keyword strings and misspelling keywords to obtain all domain name keywords related to the brand name. For example, combining the domain name keyword string ibaidu with the previous misspelled keyword can obtain: ibaidu, ibaiud, ibaadu, etc.
And S5, performing full-connection combination on the domain name keywords and all top-level domain names to be detected to obtain all domain name lists to be detected.
In particular, common top-level domain names include com, & cn, & ren, & cc, & co, & edu, and the like. All domain name keywords obtained in the step S3, such as baidu, bahdu, baadu, ibaidu, ibaidu and the like, are fully connected and combined with tld, such as com, cn, ren, cc and the like, so as to obtain domain names such as baidu.com, baidu.cn, baadu.com, ibaidu.com, ibaidu.cc and the like.
And S6, actively detecting all formed domain names to be detected, and generating a domain name brand analysis report.
Specifically, the active probing mainly includes: all formed domain names to be detected are stored in a message queue RocketMQ according to tasks idTAG, each domain name to be detected is actively detected in sequence, rocketMQ is a low-delay, high-concurrency, high-availability and high-reliability distributed message middle, rocketMQ can provide asynchronous decoupling and peak clipping and valley filling capabilities for a distributed application system, and meanwhile, the method has the characteristics of mass message accumulation, high throughput, reliable retry and the like required by Internet application. The application supports the analysis and processing of the demands of high-frequency domain name detection, station establishment screenshot, NS record inquiry and the like on a large number of domain name brands for expanding domain names based on the characteristics of low delay, high concurrence, distribution and the like. Detecting whether the domain name really exists, if so, continuously detecting whether the domain name is established, acquiring a station establishment screenshot, acquiring domain name NS information, storing the result of whether the domain name exists, the result of whether the domain name is established, the station establishment screenshot result and the NS detection result, and finally comprehensively analyzing the station establishment information, the station establishment screenshot and the NS information to generate the domain name brand analysis report. The generated brand analysis report can be used as reference basis for subsequent right maintenance, litigation and the like.
The WHOIS cluster detection subsystem can be used for judging whether the domain name really exists, if the domain name does not exist, the result is saved, and the process is finished, and the WHOIS system is used for concurrently consuming the message queue of the TAG to detect whether the domain name is registered. The site-building screenshot may be obtained through PhantomJS interface. PhantomJS is a WebKit-based server side JavaScriptAPI that enables Web support without browser support, and natively supports various Web standards such as DOM processing, javaScript, CSS selector, JSON, canvas, and scalable vector graphics SVG. PhantomJS mainly controls each module of the CSS selector of the WebKit, the scalable vector graphics SVG, the HTTP network and the like through JavaScript and CoffeeScript, and the screenshot of the established site domain name is completed through the command of the module for subsequent further analysis and use. NS (Name Server) information on domain names can be obtained by dig commands.
And S7, actively alarming the imitated domain name website.
And whether the self-defined IP blacklist and screenshot are consistent with the original brand screenshot mode identification or not is matched to generate the counterfeit domain name alarm, and the counterfeit alarm is actively carried out on the website which is judged to be counterfeit, so that relevant institutions can seal the counterfeit website in time.
The incremental change of the zone file in the TLD is continuously monitored, a newly added brand domain name keyword is obtained, and after further detection and verification, the situation that the infringed domain name is registered under the new TLD after the domain name blocking is monitored in real time can be compared.
Example two
Referring to fig. 3, a second embodiment of the present invention provides an actively detected domain name brand protection device, including:
The domain name brand keyword acquisition module is used for acquiring all domain name keywords related to the protected brand name;
The domain name brand keyword extension module is used for combining the domain name keyword with all top-level domain names to be detected to obtain all domain names to be detected; the domain name brand keyword expansion comprises misspelled word expansion and region file expansion; after expansion, a domain name list to be analyzed is formed, and the message list sequentially extracts the domain name to be detected from the message list for analysis;
and the domain name analysis module is used for actively detecting the formed domain name to be detected and generating a domain name brand analysis report.
For specific limitation of the domain name brand protection device for active detection in this embodiment, reference may be made to the limitation of the domain name brand protection method for active detection hereinabove, and the description thereof will not be repeated here. The above-mentioned active detection of each module in the domain name brand protection device may be implemented in whole or in part by software, hardware, and combinations thereof. The above modules may be embedded in hardware or may be independent of a processor in the computer device, or may be stored in software in a memory in the computer device, so that the processor may call and execute operations corresponding to the above modules.
Example III
A third embodiment of the present invention provides a computer apparatus, an internal structure of which may be shown in fig. 3. The computer device includes a processor, a memory, and a network interface connected by a system bus. Wherein the processor of the computer device is configured to provide computing and control capabilities. The memory of the computer device includes a non-volatile storage medium and an internal memory. The nonvolatile storage medium stores an operating system and a computer program. The internal memory provides an environment for the operation of the operating system and computer programs in the non-volatile storage media. The network interface of the computer device is used to communicate with other terminals or services via a network connection. The computer program when executed by a processor implements an actively probing domain name brand protection method. Wherein the computer device may be a server, the server may further comprise a database, the database of the server may store a pre-trained classification model. The computer equipment can also be a terminal, the terminal can also comprise a display screen and an input device, the display screen of the terminal can be a liquid crystal display screen or an electronic ink display screen, the input device of the terminal can be a touch layer covered on the display screen, can be a key, a track ball or a touch pad arranged on the shell of the computer equipment, can be an external keyboard, a touch pad or a mouse, and the like, and can also be a voice recognition device or a character recognition device.
It will be appreciated by persons skilled in the art that the architecture shown in fig. 4 is merely a block diagram of some of the architecture relevant to the present inventive arrangements and is not limiting as to the computer device to which the present inventive arrangements are applicable, and that a particular computer device may include more or fewer components than shown, or may combine some of the components, or have a different arrangement of components.
In one embodiment, a computer device is provided that includes a memory and a processor, the memory storing a computer program that, when executed by the processor, causes the processor to perform the steps of the domain name brand protection method of active probing described above. The steps of the method for actively detecting domain name brand protection herein may be the steps in the method for actively detecting domain name brand protection in the above embodiments: acquiring all domain name keywords related to the protected brand name; combining the domain name keywords with all top-level domain names to be detected to obtain all domain names to be detected; and actively detecting the formed domain name to be detected to generate a domain name brand analysis report.
Example IV
In a fourth embodiment of the present invention, a computer readable storage medium is provided, where a computer program is stored, where the computer program when executed by a processor causes the processor to perform the steps of the domain name brand protection method of active probing described above. The steps of the method for actively detecting domain name brand protection herein may be the steps in the method for actively detecting domain name brand protection in the above embodiments: acquiring all domain name keywords related to the protected brand name; combining the domain name keywords with all top-level domain names to be detected to obtain all domain names to be detected; and actively detecting the formed domain name to be detected to generate a domain name brand analysis report.
Those skilled in the art will appreciate that implementing all or part of the above described methods may be accomplished by way of a computer program stored on a non-transitory computer readable storage medium, which when executed, may comprise the steps of the embodiments of the methods described above. Any reference to memory, storage, database, or other medium used in embodiments provided herein may include non-volatile and/or volatile memory. The nonvolatile memory can include Read Only Memory (ROM), programmable ROM (PROM), electrically Programmable ROM (EPROM), electrically Erasable Programmable ROM (EEPROM), or flash memory. Volatile memory can include Random Access Memory (RAM) or external cache memory. By way of illustration and not limitation, RAM is available in a variety of forms such as Static RAM (SRAM), dynamic RAM (DRAM), synchronous DRAM (SDRAM), double Data Rate SDRAM (DDRSDRAM), enhanced SDRAM (ESDRAM), synchronous link (SYNCHLINK) DRAM (SLDRAM), memory bus (Rambus) direct RAM (RDRAM), direct memory bus dynamic RAM (DRDRAM), and memory bus dynamic RAM (RDRAM), among others.
The technical features of the above embodiments may be arbitrarily combined, and all possible combinations of the technical features in the above embodiments are not described for brevity of description, however, as long as there is no contradiction between the combinations of the technical features, they should be considered as the scope of the description.
The above examples illustrate only a few embodiments of the application, which are described in detail and are not to be construed as limiting the scope of the application. It should be noted that it will be apparent to those skilled in the art that several variations and modifications can be made without departing from the spirit of the application, which are all within the scope of the application. Accordingly, the scope of protection of the present application is to be determined by the appended claims.
Claims (9)
1. An actively detected domain name brand protection method, comprising:
Acquiring all misspelling keywords related to the brand name;
acquiring all related domain names containing brand names in the registered domain names, and extracting keyword strings of the related domain names;
Combining and merging the keyword strings and the misspelling keywords to obtain all domain name keywords related to the brand name;
Combining the domain name keywords with all top-level domain names to be detected to obtain all domain names to be detected;
And actively detecting the formed domain name to be detected to generate a domain name brand analysis report.
2. The method of claim 1, wherein the obtaining all misspelled keywords related to brand names comprises:
The misspelling keywords related to the brand name are obtained by misplanting the domain name, bit overturning the domain name, homophonic constructing the domain name and homophonic domain name.
3. The method of claim 1, wherein actively probing the formed domain name to be probed, generating a domain name brand analysis report comprises: detecting all formed domain names to be detected, detecting whether the domain names really exist, if so, continuing to detect whether the domain names are established, acquiring station establishment screenshots and acquiring domain name NS information, and finally comprehensively analyzing the station establishment information, the station establishment screenshots and the NS information to generate the domain name brand analysis report.
4. The method of claim 1, wherein the zone file for the desired top-level domain name is downloaded by a czds registry, incremental changes to the zone file are monitored in real time, and when there are changes, a keyword expansion task is initiated.
5. The method of claim 2, wherein the determination of whether the domain name is truly present is made by a WHOIS cluster probe subsystem.
6. The method of claim 2, wherein the site-building screenshot is obtained through a PhantomJS interface.
7. An actively detected domain name brand protection device, comprising:
The domain name brand keyword acquisition module is used for acquiring all misspelling keywords related to the brand name; acquiring all related domain names containing brand names in the registered domain names, and extracting keyword strings of the related domain names; combining and merging the keyword strings and the misspelling keywords to obtain all domain name keywords related to the brand name;
the domain name brand keyword extension module is used for combining the domain name keyword with all top-level domain names to be detected to obtain all domain names to be detected;
and the domain name analysis module is used for actively detecting the formed domain name to be detected and generating a domain name brand analysis report.
8. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, characterized in that the processor implements the steps of the method according to any one of claims 1 to 6 when the computer program is executed by the processor.
9. A computer readable storage medium, on which a computer program is stored, characterized in that the computer program, when being executed by a processor, implements the steps of the method of any of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210126386.5A CN114629875B (en) | 2022-02-10 | 2022-02-10 | Active detection domain name brand protection method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210126386.5A CN114629875B (en) | 2022-02-10 | 2022-02-10 | Active detection domain name brand protection method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114629875A CN114629875A (en) | 2022-06-14 |
| CN114629875B true CN114629875B (en) | 2024-06-04 |
Family
ID=81898038
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210126386.5A Active CN114629875B (en) | 2022-02-10 | 2022-02-10 | Active detection domain name brand protection method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114629875B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117041207B (en) * | 2023-08-09 | 2024-03-15 | 深圳海域信息技术有限公司 | Domain name management and service method based on big data analysis |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8285830B1 (en) * | 2009-01-06 | 2012-10-09 | Citizenhawk, Inc. | System and method for combating cybersquatting |
| WO2015014279A1 (en) * | 2013-07-30 | 2015-02-05 | Tencent Technology (Shenzhen) Company Limited | Method and device for clustering phishing webpages |
| CN105324786A (en) * | 2013-04-11 | 2016-02-10 | 布兰德席德有限公司 | Device, system, and method of protecting brand names and domain names |
| WO2016198635A1 (en) * | 2015-06-11 | 2016-12-15 | Dot Stories Sa | Management of internet domain names |
| CN108111547A (en) * | 2018-03-06 | 2018-06-01 | 深圳互联先锋科技有限公司 | A kind of domain name health monitor method and system |
| CN108881500A (en) * | 2017-05-09 | 2018-11-23 | 互联网域名系统北京市工程研究中心有限公司 | A kind of configuration method and configuration device of domain name protection system |
| CN109714227A (en) * | 2018-12-24 | 2019-05-03 | 深圳互联先锋科技有限公司 | Domain name monitoring method, device and computer readable storage medium |
| CN110442611A (en) * | 2019-08-12 | 2019-11-12 | 深圳互联先锋科技有限公司 | A kind of company brand domain name automation querying method and system |
| CN110785979A (en) * | 2017-05-17 | 2020-02-11 | 法赛特安全公司 | System, method and domain tokenization for domain spoofing detection |
| CN112115348A (en) * | 2020-08-05 | 2020-12-22 | 互联网域名系统北京市工程研究中心有限公司 | Method and system for recommending brand domain name registration |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070180056A1 (en) * | 2006-01-31 | 2007-08-02 | Elias Assad | Domain name registration system and methods for open top level domain environment |
| US20210248624A1 (en) * | 2013-04-11 | 2021-08-12 | Brandshield Ltd. | System, Device, and Method of Protecting Brand Names |
-
2022
- 2022-02-10 CN CN202210126386.5A patent/CN114629875B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8285830B1 (en) * | 2009-01-06 | 2012-10-09 | Citizenhawk, Inc. | System and method for combating cybersquatting |
| CN105324786A (en) * | 2013-04-11 | 2016-02-10 | 布兰德席德有限公司 | Device, system, and method of protecting brand names and domain names |
| WO2015014279A1 (en) * | 2013-07-30 | 2015-02-05 | Tencent Technology (Shenzhen) Company Limited | Method and device for clustering phishing webpages |
| WO2016198635A1 (en) * | 2015-06-11 | 2016-12-15 | Dot Stories Sa | Management of internet domain names |
| CN108881500A (en) * | 2017-05-09 | 2018-11-23 | 互联网域名系统北京市工程研究中心有限公司 | A kind of configuration method and configuration device of domain name protection system |
| CN110785979A (en) * | 2017-05-17 | 2020-02-11 | 法赛特安全公司 | System, method and domain tokenization for domain spoofing detection |
| CN108111547A (en) * | 2018-03-06 | 2018-06-01 | 深圳互联先锋科技有限公司 | A kind of domain name health monitor method and system |
| CN109714227A (en) * | 2018-12-24 | 2019-05-03 | 深圳互联先锋科技有限公司 | Domain name monitoring method, device and computer readable storage medium |
| CN110442611A (en) * | 2019-08-12 | 2019-11-12 | 深圳互联先锋科技有限公司 | A kind of company brand domain name automation querying method and system |
| CN112115348A (en) * | 2020-08-05 | 2020-12-22 | 互联网域名系统北京市工程研究中心有限公司 | Method and system for recommending brand domain name registration |
Non-Patent Citations (3)
| Title |
|---|
| A Comprehensive Measurement Study of Domain-Squatting Abuse;Yuwei Zeng; Tianning Zang; Yongzheng Zhang; Xunxun Chen; YiPeng Wang;ICC 2019 - 2019 IEEE International Conference on Communications (ICC);20190715;全文 * |
| panelYan Ding a, Nurbol Luktarhan a, Keqin Li b, Wushour Slamu .A keyword-based combination approach for detecting phishing webpages.Computers & Security.2019,全文. * |
| 一种中文域名仿冒攻击的检测方法;洪博;耿光刚;王利明;毛伟;计算机应用研究;20130628;全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114629875A (en) | 2022-06-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11683330B2 (en) | Network anomaly data detection method and device as well as computer equipment and storage medium | |
| CN108683666B (en) | Webpage identification method and device | |
| US9614862B2 (en) | System and method for webpage analysis | |
| US9954886B2 (en) | Method and apparatus for detecting website security | |
| US9218482B2 (en) | Method and device for detecting phishing web page | |
| US9147067B2 (en) | Security method and apparatus | |
| US9275018B2 (en) | Techniques for analyzing web pages to determine font subsets | |
| CN109672658B (en) | JSON hijacking vulnerability detection method, device, equipment and storage medium | |
| US20190222587A1 (en) | System and method for detection of attacks in a computer network using deception elements | |
| US11575707B2 (en) | System and method for blocking phishing attempts in computer networks | |
| US20210314352A1 (en) | Detection of User Interface Imitation | |
| CN110619075B (en) | Webpage identification method and equipment | |
| CN114629875B (en) | Active detection domain name brand protection method and device | |
| CN112217815B (en) | Phishing website identification method and device and computer equipment | |
| Hoang et al. | A multi-layer model for website defacement detection | |
| CN108322420A (en) | The detection method and device of backdoor file | |
| CN110460685B (en) | User unique identifier processing method and device, computer equipment and storage medium | |
| Wen et al. | Detecting malicious websites in depth through analyzing topics and web-pages | |
| CN110457900B (en) | Website monitoring method, device and equipment and readable storage medium | |
| CN117113430A (en) | Webpage violation picture detection method and device, electronic equipment and storage medium | |
| CN112565298B (en) | Vulnerability scanning method and device and electronic equipment | |
| CN110825976B (en) | Website page detection method and device, electronic equipment and medium | |
| CN112104656A (en) | Network threat data acquisition method, device, equipment and medium | |
| CN110120898B (en) | Remote webpage resource change monitoring and harm detection and identification method | |
| KR102595595B1 (en) | Method and device for blocking illegal and harmful information sites using website structure information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |