Vulnerability scanning method, device and electronic device

Abstract

The embodiment of the invention discloses a vulnerability scanning method, device and an electronic device. The method comprises: capturing every vulnerability scanning request message to be sent to a server by a client; selecting the vulnerability scanning request message transmitted through a preset transmission protocol from the captured vulnerability scanning request messages; analyzing the message body in the selected vulnerability scanning request message, editing the request parameter value in the analyzed message body; packaging the edited message body into a vulnerability scanning request message to be sent, sending the vulnerability scanning request message to be sent to the server according to a preset time cycle, and receiving a vulnerability scanning response message returned from the server so as to determine whether the server has vulnerability. In application of the invention, the vulnerability scanning efficiency can be improved.

Description

technical field [0001] The invention relates to computer network security technology, in particular to a method, device and electronic equipment for scanning loopholes. Background technique [0002] With the rapid development of computer network technology, the Internet has gradually become an indispensable part of people's work and life. However, while the Internet brings convenience to people, due to the complexity of the Internet application environment and the diversity of Internet applications, people are vulnerable to cyber attacks such as computer viruses and Trojan horses in the process of using the Internet. Information leakage or large material losses. [0003] In order to improve the security of the Internet, a method of performing vulnerability scanning on the client, server and the Internet between the two is currently proposed. Since the client is easy to implement vulnerability scanning, the developer sets the vulnerability scanning detection code in Client,...

AI Technical Summary

Problems solved by technology

[0004] However, in this vulnerability scanning method, when the vulnerability scanning is performed on the server, since the client cannot modify the request parameters in the vulnerability scanning request message, it is necessary to construct the vulnerability scanning request message in different clients, so as to use the information returned by the server according to the vulnerability scanning request message. Vulnerability scanning response message to determine if there are vulnerabilities in the server, whether the existing vulnerabilities are the same, which makes the time required for server vulnerability scanning longer and the efficiency of vulnerability scanning is low; at the same time, due to the vulnerability prevention mechanism preset by the client When the client constructs a vulnerability scanning request message, the vulnerability in the server is repaired by the vulnerability prevention mechanism in the client, resulting in the missed detection of the vulnerability in the server. For example, constructing a vulnerability scanning request message on the client to request the server When sending the dynamic verification code, due to the pre-set vulnerability prevention mechanism in the client, the client can only apply for the dynamic verification code once within the predetermined time threshold. Vulnerability scanning request message will feed back the vulnerability of dynamic verification code, so the vulnerability cannot be determined through the vulnerability scanning request message fed back by the server, which reduces the accuracy of vulnerability scanning and leads to low efficiency of vulnerability scanning

Images