Detecting method and device of client honeypot webpage malicious code based on sandboxing technology

A client and webpage technology, applied in the field of webpage malicious code detection, can solve problems such as failure to detect abnormal user-side behaviors, prominent security issues, etc., and achieve the effects of avoiding update and maintenance operations, improving efficiency, and improving accuracy

Inactive Publication Date: 2013-03-13
NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT +1
View PDF3 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The corresponding problems that follow are: there are more and more security incidents related to web applications, and security issues are becoming increasingly prominent
[0008] Traditional honeypots are proposed to be built on the server side, and this kind of honeypot cannot detect abnormal behavior on the client side

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Detecting method and device of client honeypot webpage malicious code based on sandboxing technology
  • Detecting method and device of client honeypot webpage malicious code based on sandboxing technology
  • Detecting method and device of client honeypot webpage malicious code based on sandboxing technology

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below in conjunction with the accompanying drawings and embodiments.

[0035] see figure 1 , introduces the structural composition of the client honeypot webpage malicious code detection device based on the sandbox technology of the present invention, which has three components: a server unit, a client management unit, and a detection unit.

[0036] The server unit is used to complete the configuration of detection parameters, issue the Uniform Resource Locator URL (Universal Resource Locator) and process and display the detection results; it is equipped with a detection configuration module, a server control module, an interface module and a result processing module. The functions of each module are:

[0037] The interface module is used to accept the configured detection parameters and detection requests and send t...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a detecting method and a device of client honeypot webpage malicious code based on sandboxing technology. The device provided by the invention comprises a service terminal unit, a client terminal management unit and a detecting unit, wherein during the real-time alternation process of a web server, the device detects webpage malicious codes by monitoring the action change of a browser. The detecting method comprises the steps: the service terminal unit firstly receives a detecting parameter from a man-machine interface, and starts a virtual machine application program; after a virtual machine is started by a virtual software, the client terminal management unit establishes the communication between a PC (personal computer) machine in which the service terminal unit is located and the virtual machine; and a browsing appointed webpage of the browser is opened; after the detecting unit monitors the whole browsing process and the client terminal management unit evaluates the monitoring data, the evaluation result is displayed by the service terminal unit via the human machine interface. Compared with the prior art, the method and device provided by the invention can detect and discover the malicious codes existing in the webpage accurately, and improve the detection efficiency of the webpage malicious codes.

Description

technical field [0001] The present invention relates to a method and device for detecting malicious codes in webpages, to be precise, to a method and device for detecting malicious codes in client honeypot webpages based on sandbox technology, which belongs to a comprehensive sandbox technology, system call and honey The technical field of web application security inspection of Jar technology. Background technique [0002] With the rapid development of Internet technology, web applications have gradually become the center of network information interaction. The following corresponding problems are: there are more and more security incidents related to web applications, and the security problems are becoming more and more prominent. Currently, web page Trojan horses have become one of the most common forms of Trojan horse transmission. A large number of malicious web page codes of all kinds are flooding the computer network, spreading and spreading at a very fast speed; and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L12/26H04L29/06
Inventor 张冬梅闫丹凤王鲁华舒敏周春燕钟金鑫邓明
Owner NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap