Web Trojan detection system and method based on sandbox technology

A detection system and sandbox technology, which is applied in the field of network information security, can solve problems such as hacker intrusion, bad image of the government, and inability to detect Internet horses, so as to achieve the effect of improving the detection rate and detection efficiency

Inactive Publication Date: 2017-09-22
四维创智(北京)科技发展有限公司
View PDF6 Cites 1 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Internet + government affairs is playing an increasingly important role in improving government administrative efficiency and improving government public service capabilities. However, these websites have relatively weak protection measures and are often invaded by hackers, who tamper with the content of the website and bring a bad image to the government. even pose a serious threat to the normal operation of government work and the security and confidentiality of government information or personal information.
Most of the trojan scanning tools currently on the market are based on feature matching. Faced with more complex trojans (such as encrypted codes), they cannot accurately detect trojans. Lots of false negatives and false negatives

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] The present invention will be further described below in conjunction with embodiment:

[0020] A network horse detection system based on sandbox technology, including a site malicious code monitoring module, a web page Trojan detection module, an iframe frame implant detection module, an abnormal link jump detection module, a dynamic detection engine module and a website Trojan security monitoring timing report module;

[0021] The malicious code monitoring module of the site detects the specified site regularly, and reports to the police if the site is abnormal;

[0022] The webpage hanging horse detection module detects the backdoor program on the website, and finds the site hanging horse threat in time;

[0023] The iframe frame implantation detection module dynamically debugs the web page code, thereby accurately discovering the confusing iframe frame implantation;

[0024] The abnormal link jump detection module simulates the honeypot through the client to detect...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a web Trojan detection system and method based on sandbox technology. The system comprises a website malicious code monitoring module, a webpage Trojan carrying detection module, an iframe framework implanting module, an abnormal link skipping detection module, a dynamic engine detection module and a periodic webpage Trojan carrying security monitoring reporting module. The web Trojan scanning engines on the market at present are collected, the web Trojan detection system is a web Trojan detection engine based on browser sandbox technology, a local browser sandbox is constructed to simulate a Web browser behavior so as to identify and detect malicious behaviors, the dynamic detection engine can perform dynamic decryption and identification on malicious codes which are encrypted and are hard to identify, and the detection rate of the unknown web Trojan is improved by detection means based on behaviors. Distributed parallel processing of web Trojan detection tasks is realized by adopting asynchronous task management and distributed task allocation, and the detection efficiency of a large number of web Trojan detection tasks is improved.

Description

technical field [0001] The invention relates to the field of network information security, in particular to a sandbox technology-based nethorse detection system and a detection method thereof. Background technique [0002] The rapid development of the Internet has pushed people into the Web2.0 era, bringing great convenience to people's life, work and study. Since my country proposed the Internet+ action plan in 2015, the use of information technology to promote e-government has also become an important condition for realizing the goal of modernizing the national governance system and governance capabilities. Internet + government affairs is playing an increasingly important role in improving government administrative efficiency and improving government public service capabilities. However, these websites have relatively weak protection measures and are often invaded by hackers, who tamper with the content of the website and bring a bad image to the government. It even pose...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06F21/56G06F21/53
CPCG06F21/53G06F21/563G06F2221/033H04L63/1416H04L63/1425H04L63/145
Inventor 李德斌司红星
Owner 四维创智(北京)科技发展有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap