Malicious code evidence obtaining method and system on the basis of feature code under Linux
A malicious code and feature code technology, applied in the fields of instruments, digital data processing, platform integrity maintenance, etc., can solve the problems of low detection efficiency and too large signature database, and achieve the effect of reducing the number of invalid comparisons
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Example Embodiment
[0040] In order to enable those skilled in the art to better understand the technical solutions in the embodiments of the present invention, and to make the above-mentioned objectives, features and advantages of the present invention more obvious and understandable, the technical solutions of the present invention will be further detailed below in conjunction with the accompanying drawings. Description.
[0041] Based on the above problems, the present invention proposes a signature-based malicious code forensics method and system under Linux, which solves the problem of malicious code forensics under Linux and at the same time solves the problem of too large signature database and low detection efficiency.
[0042] A malicious code forensics method based on signature codes under Linux, such as figure 1 Shown, including:
[0043] S101: Obtain the attribute feature of the file running under the Linux system and the string information in the memory; if it is an attribute feature, execu...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap