Network asset information collection and monitoring system
What is Al technical title?
Al technical title is built by PatSnap Al team. It summarizes the technical point description of the patent document.
A network asset and monitoring system technology, applied in the field of network security, can solve problems such as non-classification, incomplete IP addresses, and inaccurate information
Active Publication Date: 2020-10-23
广州锦行网络科技有限公司
View PDF8 Cites 6 Cited by
Summary
Abstract
Description
Claims
Application Information
AI Technical Summary
This helps you quickly interpret patents by identifying the three key elements:
Problems solved by technology
Method used
Benefits of technology
Problems solved by technology
[0006] 1. Usually only port scanning is performed on all IP addresses in the C segment of the IP address of the master station, which is not targeted and depends entirely on luck
[0007] 2. The network asset information of different service providers will be obtained, and the information is inaccurate
[0008] 3. If the sub-domain name blasting method is not used, the obtained IP address is not comprehensive, and the collected network asset information is not comprehensive
[0009] 4. It is not collected on an enterprise basis, and the information obtained is scattered
[0010] 5. Only collect network asset information for open services, and do not classify
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more
Image
Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
Click on the blue label to locate the original text in one second.
Reading with bidirectional positioning of images and text.
Smart Image
Examples
Experimental program
Comparison scheme
Effect test
Embodiment 1
[0110] According to a specific embodiment of the present invention, the present invention provides a network asset information collection and monitoring system, including:
[0111] The information collection module obtains the IP address of the main station according to the main domain name of the enterprise to be checked, obtains the set of all sub-domain names through sub-domain name blasting according to the main domain name, and then obtains the IP addresses of all sub-stations, and scans all IP addresses through the ipwhois command and port Obtain all network asset information corresponding to each IP address;
[0112] When collecting network asset information of an enterprise, the enterprise name will be determined first, and then the main domain name of the enterprise can be searched on the Internet according to the name of the enterprise. If necessary, the IP address and information of the main website corresponding to the main domain name can be further obtained The c...
Embodiment 2
[0155] The following example illustrates the process of collecting network asset information of the present invention for a company, such as the company name: Guangzhou Renren Investment Co., Ltd., and the main domain name of the company is obtained through Internet search: rrtzx.com. The following domain names, IP addresses, and detailed content of all network asset information are only for explaining the method of the present invention, and do not mean that they must be real domain names or addresses.
[0156] Enter the main domain name rrtzx.com;
[0157] Obtain LOGO file, MD5, https certificate;
[0158] The main domain name corresponds to the IP address of the main website: 118.34.78.152, middleware: Server: nginx, title: Guangzhou Renren Investment Co., Ltd.
[0159] Query the enterprise information of the enterprise from the APNIC website through the main station IP address 118.34.78.152, and the WHOIS results show:
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
PUM
Login to view more
Abstract
The invention provides a network asset information collection and monitoring system, and belongs to the field of network security. The method comprises the following steps: performing sub-domain nameblasting on a main domain name to obtain a sub-domain name set; further, obtaining all network asset information corresponding to all IP addresses through ipwhois and port scanning; and classifying all IP addresses and all domain names, comparing all network information acquired by the IP addresses with open services with all network asset information acquired by the IP address of the master station, taking multiple values, classifying and inputting the multiple values into a useful network asset information list of the to-be-checked enterprise, and completely inputting other types of classifications. Middleware scanning is performed on a useful network asset information list, a vulnerability list corresponding to middleware information is pulled, and a vulnerability alarm is given. According to the invention, the classified network asset information in units of enterprises can be obtained through simple main domain name input, the network assets are subjected to security monitoring, the steps are simplified, and the method is simple and easy to implement.
Description
technical field [0001] The invention relates to the field of network security, in particular to a system for collecting and monitoring network asset information. Background technique [0002] The Internet has penetrated into all walks of life in today's society, affecting every part of people's lives, and has become an increasingly inseparable technology for people's lives. However, with the rapid development of the Internet, the network has become a problem that people are more and more concerned about, and the management of network assets is an indispensable means of network security. [0003] At present, in the black box test of enterprise network security testing, the staff often only collect information once: that is, after collecting the information, it will be recorded in text or other notepad software, and will not be updated dynamically. It will not be detailed to a specific version. At the same time, in the black box test, port information collection, website dir...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
Application Information
Patent Timeline
Application Date:The date an application was filed.
Publication Date:The date a patent or application was officially published.
First Publication Date:The earliest publication date of a patent with the same application number.
Issue Date:Publication date of the patent grant document.
PCT Entry Date:The Entry date of PCT National Phase.
Estimated Expiry Date:The statutory expiry date of a patent right according to the Patent Law, and it is the longest term of protection that the patent right can achieve without the termination of the patent right due to other reasons(Term extension factor has been taken into account ).
Invalid Date:Actual expiry date is based on effective date or publication date of legal transaction data of invalid patent.
Login to view more 
Login to view more