Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Webshell detection method, system and device based on cloud platform, and storage medium

A web page backdoor and detection method technology, applied in the field of network security, can solve the problems of disrupted basic attack characteristics, difficult to detect, difficult to detect webshell attacks, etc., to optimize management costs and reduce maintenance costs.

Inactive Publication Date: 2017-12-08
SHANGHAI CTRIP COMMERCE CO LTD
View PDF1 Cites 27 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In this case, since the basic attack characteristics of webshell attacks have been disrupted, it is difficult to detect them according to the basic attack characteristics, so the detection of webshell attacks has become a major problem today

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Webshell detection method, system and device based on cloud platform, and storage medium
  • Webshell detection method, system and device based on cloud platform, and storage medium
  • Webshell detection method, system and device based on cloud platform, and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] Example embodiments will now be described more fully with reference to the accompanying drawings. Example embodiments may, however, be embodied in many forms and should not be construed as limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the concept of the example embodiments to those skilled in the art. The same reference numerals denote the same or similar structures in the drawings, and thus their repeated descriptions will be omitted.

[0048]The web page backdoor detection method based on cloud platform of the present invention comprises the following steps:

[0049] S101. Establish a rule detection module and a machine learning detection module on the cloud platform, the rule detection module includes a plurality of malicious keyword features, the malicious keyword features of the rule detection module are sent to the terminal, and the machine learning ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a webshell detection method, system and device based on a cloud platform, and a storage medium. The webshell detection method comprises obtaining a white list through keyword judgement, and correcting the white list by combining a machine learning prediction result and a human judgment result. According to the invention, by means of two-engine detection and judgement and cloud unified management, the webshell detection and processing logic is optimized, machine learning recognition detection is added, two engines of characteristic rule matching and machine learning prediction are employed to effectively prevent known and unknown webshell threats, at the same time, the management cost of operational staff is optimized, and the maintenance security cost is reduced.

Description

technical field [0001] The invention relates to the field of network security, in particular to a cloud platform-based webpage backdoor detection method, system, device and storage medium. Background technique [0002] webshell is a webpage with asp (active server pages, dynamic server pages), php (hypertext preprocessor, hypertext preprocessor), jsp (java server pages, java server pages) or cgi (common gateway interface, public gateway interface) A command execution environment that exists in the form of a file. Since webshell is a web backdoor, it becomes a script attack tool for hackers to invade web servers. In practical applications, after a hacker has invaded a website, he usually mixes these asp or php and other backdoor files with the normal webpage files in the web directory of the website server, and then accesses these asp or php and other backdoor files through a browser. Thereby controlling the web server. [0003] Therefore, protecting against webshell attac...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F21/56G06K9/62G06N99/00
CPCG06F21/562G06N20/00G06F2221/2119G06F18/2411
Inventor 张亮凌云章锦成杨晓春陈莹周鸣杰沈振鹏
Owner SHANGHAI CTRIP COMMERCE CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products