Attack link based website backdoor use event identifying method
An identification method and website technology, applied in electrical components, transmission systems, etc., can solve the problems of inability to determine the attack stage, difficult to determine website intrusion events, and inability to attack correlation analysis, and achieve the effect of improving the ability of security response.
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Example Embodiment
[0021] The present invention will be further described in detail below in conjunction with embodiments, but the protection scope of the present invention is not limited thereto.
[0022] The invention relates to a method for identifying a website backdoor utilization event based on an attack chain. The method includes the following steps.
[0023] Step 1: Obtain the log data in the background and analyze it.
[0024] Step 2: If it is confirmed as an attack, discard the log data of normal access, keep the log involving the attack, and proceed to the next step; otherwise, return to step 1.
[0025] In the step 2, if a false alarm is found, the log data is directly discarded, and step 1 is returned.
[0026] Step 3: Identify the attack behavior and classify and merge the attack types at the same time to obtain the latitude and attack type of the IP carried by the attack behavior.
[0027] Step 4: Divide the attack behavior into several stages according to the IP latitude and attack type.
[...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap