Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Method and device for scanning website program bugs based on web

A vulnerability scanning and vulnerability technology, applied in the field of information security, can solve problems such as long-term waiting

Inactive Publication Date:
View PDF8 Cites 22 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0008] To sum up, the method of vulnerability detection in the prior art is based on URL and vulnerability detection. The website program vulnerability scanners are all developed by C++ and dephi, and work on the client computer. To install a vulnerability detection device on the client computer, it takes a long time to scan the website and run it multiple times. It is also necessary to select the client computer system environment and configure the environment to scan the website

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for scanning website program bugs based on web
  • Method and device for scanning website program bugs based on web
  • Method and device for scanning website program bugs based on web

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] The technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the accompanying drawings in the embodiments of the present invention. It should be understood that the described embodiments are only some of the embodiments of the present invention, not all of them. example. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without making creative efforts belong to the protection scope of the present invention.

[0035] like figure 1 Shown is a schematic flow diagram of a program vulnerability scanning method based on a WEB website, and the specific steps are as follows:

[0036] Step 1, set up parameter information, and save configuration parameter information in the database; Described database is MYSQL database, SQL Server database etc., and the type of described database is not limited to technical scheme of the present invention, so in ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a method and system for scanning website program bugs based on a web. In the system which is composed of a system management module, a bug library management module, a bug scanning module, an external link module and a result display module, the method for scanning the website program bugs comprises the steps of (1) storing configured parameter information into an appointed database; (2) establishing a root user account and a general user account used for login, setting a target website link required to be scanned, and storing the target website link into the appointed database; (3) searching and organizing all bug types, after the login through the root user account, and establishing a bug library according to the bug types, wherein the bug library comprises bug scripts and bug mark numbers; (4) using the bug scripts in the bug library for inspecting the bugs in the target website links, calling the corresponding bug mark numbers, and scanning the website program bugs. According to the method for scanning the website program bugs, running again is not required after one-time configuration, and safety scanning can be remotely carried out on website programs at any time and place.

Description

technical field [0001] The invention relates to a program loophole scanning method and device based on a WEB website, belonging to the field of information security. Background technique [0002] As various WEB applications (online banking, e-commerce, personal space, cloud storage, etc.) continue to enter people's lives, if these WEB applications have hidden dangers, personal information and even WEB site systems will be in danger. risk. According to statistics, currently 80% of network attacks are carried out through the WEB. [0003] For ordinary WEB administrators, security-based management takes up a lot of work time, because manual testing and auditing of WEB application security is a complex and time-consuming task that requires not only great patience but also Professional technical experience. The automated vulnerability scanning technology can greatly simplify the detection of security risks and help web administrators reduce their workload. [0004] Known webs...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/57G06F17/30
CPCG06F21/577
Inventor 吴雄辉
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products