Website security detection system and method combined with web automation and proxy interception

Abstract

The invention discloses a website security detection system and method combining Web automation and proxy interception. The system mainly comprises an automation script module, a Web automation test module and a proxy interception module. The automatic script module realizes browser driver loading, webpage input element content loading, user operation simulation and the like, wherein all or part of the webpage input elements adopt an encryption and decryption algorithm for user input content when the website transmits information; the Web automatic test module is used for analyzing the automatic script and realizing webpage request and response; and the proxy interception module is used for intercepting, modifying and forwarding the network data packet according to the processing rule, wherein the modification comprises adding, deleting and / or modifying HTTP header content and content irrelevant to an encryption and decryption algorithm in HTTP message main body content. The method canbe applied to website detection of the customized encryption and decryption algorithm, the detection difficulty is reduced, the efficiency is improved, and the authentication problem of the customized encryption and decryption algorithm can be solved in a short time.

Description

technical field [0001] The invention relates to a website security detection system and method combined with Web automation and proxy interception, belonging to the fields of network security and penetration testing. Background technique [0002] The common web security detection method adopts the method of proxy interception, such as figure 1 As shown, taking the Burp Suite tool as an example, Burp Suite intercepts all network traffic passing through the proxy, such as the client's request data and the server's return information. Burp Suite mainly intercepts the traffic of HTTP and HTTPS protocols. Through interception, Burp Suite can perform various processing on the data requested by the client and the return returned by the server in the way of a middleman, so as to achieve the purpose of security assessment and testing. For conventional websites, the proxy interception security detection method can meet the security detection requirements of the website. [0003] Whe...

AI Technical Summary

Problems solved by technology

The problem with the web automation testing method applied to website security detection is that it can only set the existing web page elements, and cannot add, delete, or modify the HTTP header content and HTTP message body content, and cannot secure the content of interest to the target website. detection

[0005] To sum up, for the website security detection problem of custom encryption and decryption algorithm, the existing technology has the following shortcomings that need to be further improved: 1. Adopt the proxy interception method, if it is not processed according to the custom encryption and decryption algorithm, it cannot pass the server authentication and cannot Perform security detection; if you process custom encryption and decryption algorithms, you need to customize and develop plug-ins, and usually the encryption and decryption algorithms are obfuscated, which has poor readability, is difficult to develop, and takes a lot of time. The detection cannot be completed in a short time

2. With the automated testing method, only the existing web page elements can be set, and the content of the HTTP header and the main body of the HTTP message cannot be added, deleted, or modified. need

Images