Hacker behavior discovery and analysis based on linkage of intrusion detection and vulnerability scanning

Abstract

The invention discloses a method for hacker behavior discovery and analysis based on linkage of intrusion detection and vulnerability scanning. Through linkage of an intrusion detection technology and a vulnerability scanning technology, an attack is accurately positioned or a suspicious hacker behavior is discovered, so that the hacker intrusion behavior is timely intervened to avoid loss before the hacker intrusion behavior is successful, and furthermore, an attack source is analyzed and discovered through an attack source tracking technology, and the subsequent attack behavior of the attack source is prevented by utilizing the technologies, such as blacklist.

Description

technical field

[0001] The invention relates to the technical field of information security, in particular to the discovery and analysis of hacker behaviors based on the linkage of intrusion detection and vulnerability scanning. Background technique

[0002] In the current Internet field, with the frequent occurrence of a series of network security incidents, people's attention to security threats is also increasing. The most important cause of network security incidents is hackers. Usually, the attacks launched by these hackers should not be attacked. Traditional anti-virus software or intrusion detection system, intrusion prevention system detection, some hackers tend to lurk in the system for a long time, even more than 200 days according to some surveys, these latent hacker attacks will be in the user's unconscious In some cases, steal their private information or cause user network paralysis, information loss and other losses. Contents of the invention

[0003] The i...

Images