Website back door detection method and device

A detection method and website technology, applied in the field of information security, can solve the problems of loss of backdoor, easy false negatives and false positives, encryption and obfuscation before it is provided to the backdoor, etc.
CN106301974AInactive Publication Date: 2017-01-04ALIBABA GRP HLDG LTD
5 Cites 4 Cited by

Patent Information

Authority / Receiving Office
CN · China
Current Assignee / Owner
ALIBABA GRP HLDG LTD
Publication Date
2017-01-04
Estimated Expiration
Not applicable · inactive patent

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention provides a website back door detection method and device. The website backdoor detection method comprises steps of putting a file of a website to be detected into an independent space isolated from a practical execution environment of the file of the website to be detected for operation; constructing an external parameter carrying a danger label and supplying the external parameter to the file of the website to be detected by responding to an external parameter obtaining request transmitted by the file of the website to be detected during operation in the independent space, wherein the external parameter carrying the danger label goes through a booking string processing function and the danger label is maintained; determining whether the file of the website to be detected executes the danger function during a process of operating in the independent space and whether the parameter of the danger function has the danger label; if afacts that the file of the website to be detected executes the danger function in the process of operating in the independent space and the danger function calls the parameter with the danger labels is determined, detecting that the file of the website to be detected is a backdoor file. The embodiment of the website back door detection method and device can effectively detect the backdoor of the website.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to information security, in particular to a website backdoor detection method and device. Background technique

[0002] Website backdoors usually refer to those website files that bypass website security control to gain control of the website server, and are usually written in codes such as asp, php, jsp or cgi. Most web scripting languages ​​support the execution of dynamic codes, such as executing received parameters as codes, or executing variables after operations as codes. This is often used by hackers to write website backdoors and bypass security detection. That is to say, the Trojan horse executor puts the backdoor file which is not a Trojan horse into the website server, which usually has strong concealment, and will not be directly used by the Trojan horse attacker to attack the website server, but as a means for the Trojan horse attacker to attack the website server. aisle. That is, the Trojan horse attacker usually s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More