Webpage log attack information detection method, system and device and readable storage medium

An information detection and logging technology, applied in transmission systems, digital transmission systems, data exchange networks, etc., can solve the problems of not being able to obtain summary statistics of network security, missing the opportunity to capture attackers, and passing analysis
CN110830483AActive Publication Date: 2020-02-21HANGZHOU ANHENG INFORMATION TECH CO LTD
5 Cites 5 Cited by

Patent Information

Authority / Receiving Office
CN · China
Current Assignee / Owner
HANGZHOU ANHENG INFORMATION TECH CO LTD
Publication Date
2020-02-21

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention discloses a webpage log attack information detection method, system and device and a readable storage medium, and the method comprises the steps: obtaining a webpage log, carrying out the splitting of the webpage log through a data cleaning model, and obtaining a data segment; merging the request responses in the data fragments in series according to a timeline by utilizing a keywordanalysis model to obtain a flow portrait; utilizing a webpage backdoor analysis model to retrieve malicious codes in the webpage logs; performing sandbox test on the malicious code to obtain a test result; and adding a test result in the flow portrait, and obtaining a webpage backdoor attack timeline. According to the method, the webpage log is processed, so that the webpage backdoor attack timeline used for tracking the attacker and restoring the attack process can be finally obtained, and powerful reference evidences are provided for capturing the attacker in time and preventing the attacker from committing a crime next time.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The present invention relates to the field of computer application technology, in particular to a method, system, device and readable storage medium for detecting web page log attack information. Background technique

[0002] The web log is an important part of the web server, which records in detail the client's access request to the web application and the running status of the server during the running of the server. The data on the behavior status of the server recorded in the log over time is also very large, and it is not feasible to rely on manual investigation. At the same time, the intrusion behavior of the attacker on the website will also be recorded in the webpage log.

[0003] At present, the analysis and processing of the webpage logs is often only the summary statistics of the webpage logs, and it is impossible to obtain summary statistics beneficial to network security. That is, if the effective information of the webpage log cannot b...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More