Detection method, system and storage medium of embedded office documents

A detection method and embedded technology, applied in the fields of instrumentation, computing, electrical digital data processing, etc., can solve the problems of document confusion, difficulty in detection, complex document format, etc., to solve the problems of low detection rate and low development cost. Effect

Active Publication Date: 2022-01-07
HARBIN ANTIY TECH
View PDF9 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In view of the above problems, the present invention proposes a detection method, system and storage medium of an embedded office document. The method utilizes the self-parsing function of the embedded office document during execution to detect the released document and solve the problem of document Confusion and complex document formats are difficult to detect

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Detection method, system and storage medium of embedded office documents
  • Detection method, system and storage medium of embedded office documents
  • Detection method, system and storage medium of embedded office documents

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] In order to enable those skilled in the art to better understand the technical solutions in the embodiments of the present invention, and to make the above-mentioned purposes, features and advantages of the present invention more obvious and easy to understand, the technical solutions in the present invention will be further detailed below in conjunction with the accompanying drawings illustrate.

[0026] The invention proposes a detection method, system and storage medium of an embedded office document. The method utilizes the self-parsing function of the embedded office document during execution to detect the released document, and solves document confusion, document format Complex and difficult to detect problems.

[0027] First of all, the present invention proposes a detection method for embedded office documents, such as figure 1 shown, including:

[0028] S101: Obtain a process list;

[0029] S102: Determine whether there is an office-related process, and if s...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention proposes a detection method, system and storage medium for an embedded office document. The method includes: obtaining a process list, judging whether there is an office-related process, and if so, monitoring the %TEMP% directory; monitoring the %TEMP% directory Whether there is a new file, if yes, suspend the office related process, and detect the new file, otherwise, the process file is a normal file. The invention also presents a corresponding system for implementing the method. By inventing the self-parsing operation of the office document, the released file is detected without parsing the office document format, which can effectively avoid the influence of the office document confusion on the detection, and at the same time solve the problem of detection due to the complexity of the document format The problem of low yield.

Description

technical field [0001] The invention relates to the field of computer network security, in particular to a detection method and system for an embedded office document. Background technique [0002] Due to the complexity of the Office document format, traditional security software mostly uses the Office file as a whole to match features when performing static detection. Very low, documents become more difficult to detect after they are obfuscated. If you use Office to parse first, and then analyze and detect embedded files, this solution is more complicated, the development cost is relatively high, and it is difficult to implement. However, when performing dynamic detection, since the triggering environments for different vulnerabilities in Office documents are different, if you want to conduct a complete detection, you need to prepare multiple environments for detection, which takes a lot of time and is difficult to complete in the user system. The detection effect of trad...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/56
CPCG06F21/562
Inventor 张国强李柏松王小丰
Owner HARBIN ANTIY TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap