Unlock instant, AI-driven research and patent intelligence for your innovation.

Script heuristic detection method and system based on variable name confusion degree

A variable name and heuristic technology, applied in the direction of instruments, electrical digital data processing, platform integrity maintenance, etc., can solve the problems of complex implementation, high development and maintenance costs, and low operating efficiency, and achieve low resource occupation and operating efficiency High, easy to develop and maintain

Active Publication Date: 2017-05-10
HARBIN ANTIY TECH
View PDF5 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This method needs to develop a special virtual execution engine for each script, which is complicated to implement and has high development and maintenance costs; and in the detection process, it may also consume a large amount of storage space and computing resources, and usually the operating efficiency is not good. high

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Script heuristic detection method and system based on variable name confusion degree
  • Script heuristic detection method and system based on variable name confusion degree

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0038] Embodiment 1 provides a script heuristic detection method based on the degree of confusion of variable names, such as figure 1 shown, including:

[0039] S101: collecting a corpus of English words;

[0040] S102: Integrate the collected corpus, and use a supervised machine learning method to train the classification model on the collected corpus;

[0041] For example, the Markov chain method: use the bigram method to segment all the words in the corpus, generate multiple segments consisting of two letters, generate a state transition matrix T, and perform frequency statistics on the segments;

[0042] Select regular words, divide them in the same way as above, and use the state transition matrix T generated above to calculate the average frequency of regular words as the regular word frequency P good ;

[0043] Select a random non-word character string, divide it in the same way as above, and use the state transition matrix T generated above to calculate the mean val...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a script heuristic detection method and system based on a variable name confusion degree. The script heuristic detection method comprises the steps of: collecting an English word corpus; carrying out classification model training on the collected corpus by using a supervision-type machine learning method; and inputting variable names extracted from a script to be detected into a classification model, carrying out statistics on output results, and if one or more of the statistic results are greater than a preset value, determining the script to be detected as a malicious script. By the method disclosed by the invention, the problems of complex maintenance, high resource occupation and low operation speed of existing script detection are solved.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to a script heuristic detection method and system based on the degree of confusion of variable names. Background technique [0002] In recent years, malicious scripts have exploded, and a large number of scripts use various obfuscation methods to avoid detection and killing by anti-virus engines, which increases the time cost of analysts and the difficulty of detection by anti-virus engines. Therefore, the ability to detect obfuscated scripts has become a key capability against malicious scripts. [0003] The traditional script detection method is that the detection program simulates the interpretation and execution of the script to obtain its possible execution path. This method needs to develop a special virtual execution engine for each script, which is complicated to implement and has high development and maintenance costs; and in the detection process, it may also cons...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56
CPCG06F21/562
Inventor 刘爽童志明肖新光
Owner HARBIN ANTIY TECH
PatSnap Eureka logo

PatSnap Eureka turns technology decisions into work you can execute. Powered by our Innovation Knowledge Graph, it runs expert workflows across engineering, life sciences, materials and intellectual property. Get your review-ready output in minutes.

X (Twitter)LinkedInYouTubeSubstack

© 2026 PatSnap. All rights reserved. 

Terms of Service

 | 

Privacy policy

 | 

Modern Slavery Act Transparency Statement