Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

XSS attack detection method and device, equipment and medium

An attack detection and detection technology, applied in the field of information security, can solve the problems of difficult to extract effective rules, false negatives and false positives, etc., to achieve the effect of reducing the false negative rate and improving the detection ability

Pending Publication Date: 2021-07-20
SANGFOR TECH INC
View PDF8 Cites 4 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, there is a lag in the rule-based XSS detection method. Only when the XSS attack is exposed, can the corresponding rules be extracted.
What's more serious is that with the enhancement of XSS obfuscation and bypassing capabilities, it is difficult to extract effective rules, which is likely to cause false negatives and false positives

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • XSS attack detection method and device, equipment and medium
  • XSS attack detection method and device, equipment and medium
  • XSS attack detection method and device, equipment and medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0052] The following will clearly and completely describe the technical solutions in the embodiments of the application with reference to the drawings in the embodiments of the application. Apparently, the described embodiments are only some of the embodiments of the application, not all of them. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.

[0053]The current mainstream XSS detection technology is mainly filtering based on rules. Security personnel collect currently known XSS attack data, summarize the characteristics of XSS attacks, form a rule base, and then use the rule base to detect the data to be tested, so as to determine whether there is an XSS attack. However, there is a lag in the rule-based XSS detection method, and the corresponding rules can only be extracted after the XSS attack is exposed. What's more se...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an XSS attack detection method, apparatus and device, and a medium. The method comprises the steps of obtaining to-be-detected traffic; extracting a payload in the to-be-detected flow to obtain a to-be-detected payload; performing corresponding processing on the to-be-detected payload by using a bypassing reduction strategy corresponding to the target bypassing strategy so as to reduce the payload subjected to bypassing deformation in the to-be-detected payload to obtain a corresponding processed payload; and determining whether the to-be-detected traffic is the XSS aggressive traffic or not based on the feature information of the processed payload. According to the method, before whether the to-be-detected traffic is the XSS aggressive traffic is determined based on the feature information of the payload, the to-be-detected payload is correspondingly processed by using the bypassing restoration strategy, so that the payload subjected to bypassing deformation in the to-be-detected payload can be restored, the missing report rate is reduced, and the detection capability aiming at the XSS attack is improved.

Description

technical field [0001] The present application relates to the technical field of information security, and in particular to an XSS attack detection method, device, equipment and medium. Background technique [0002] XSS (Cross Site Scripting, cross-site scripting attack) is a very common web application security vulnerability. Attackers take advantage of this vulnerability to embed malicious script codes in normal pages, allowing users to execute malicious scripts when they visit the page to achieve the purpose of attack. All points where data can be submitted to the page may be tampered by hackers and become unexpected input, resulting in XSS vulnerabilities. At the same time, the flexibility of JavaScript and HTML syntax leads to various types of bypass and confusion, so XSS defense has always been the focus and difficulty of web security construction. [0003] The current mainstream XSS detection technology is mainly filtering based on rules. Security personnel collect...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06
CPCH04L63/1416H04L63/1433H04L63/0227
Inventor 黄忠强杨荣海董蜀黔王大伟文成龙
Owner SANGFOR TECH INC
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products