Unlock instant, AI-driven research and patent intelligence for your innovation.

Elasticsearch indexing method and device based on APT analysis and computer equipment

A computer program and index technology, applied in the field of data query, can solve problems such as low retrieval efficiency

Pending Publication Date: 2020-10-30
HANGZHOU ANHENG INFORMATION TECH CO LTD
View PDF0 Cites 3 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] The embodiment of the present application provides an Elasticsearch indexing method, device and computer equipment based on APT analysis, so as to at least solve the problem of low retrieval efficiency in the log-based APT big data analysis using the time axis as the basis of the log storage index in the related art question

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Elasticsearch indexing method and device based on APT analysis and computer equipment
  • Elasticsearch indexing method and device based on APT analysis and computer equipment
  • Elasticsearch indexing method and device based on APT analysis and computer equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0034] In order to make the purpose, technical solutions and advantages of the present application clearer, the present application will be described and illustrated below in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described here are only used to explain the present application, and are not intended to limit the present application. Based on the embodiments provided in the present application, all other embodiments obtained by persons of ordinary skill in the art without creative efforts shall fall within the protection scope of the present application. In addition, it can also be understood that although such development efforts may be complex and lengthy, for those of ordinary skill in the art relevant to the content disclosed in this application, the technology disclosed in this application Some design, manufacturing or production changes based on the content are just conventional technical means, and...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to an Elasticsearch indexing method and device based on APT analysis and computer equipment. The Elasticsearch indexing method based on the APT analysis comprises the following steps: an instruction to be inquired is acquired, the instruction is inquired in the index under the condition that the index corresponding to the instruction is contained in the database, and the index result is determined, wherein indexes of date and IP segment are created in the database, the IP segment is determined according to the width of an IP pool, the index is created with a document, andthe document is related to the attack information, so that the problem of low retrieval efficiency due to the fact that log-based APT big data analysis uses time axis as the basis of a log storage index in related technologies is solved, and the retrieval efficiency is improved.

Description

technical field [0001] This application relates to the technical field of data query, in particular to an Elasticsearch indexing method, device and computer equipment based on APT analysis. Background technique [0002] Elasticsearch is an open source Lucene-based search server that provides a distributed multi-user capable full-text search engine. In the big data industry, Elasticsearch's distributed retrieval function facilitates multi-dimensional presentation, analysis, and prediction of data, which is conducive to giving full play to the value of data. [0003] In related technologies, the characteristics of APT attacks are: coordinated team operations, various attack methods, and long attack duration and interval. When analyzing this kind of attack, it is necessary to conduct a joint analysis of other attacks in history, and use information such as attack methods, attack habits, and attack fingerprints to confirm whether it is an APT attack. Existing log-based APT big...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): G06F16/31G06F16/33G06F16/28G06F16/2453
CPCG06F16/313G06F16/316G06F16/3331G06F16/284G06F16/2453Y02D10/00
Inventor 李昭宇范渊
Owner HANGZHOU ANHENG INFORMATION TECH CO LTD