Static feature based web page malicious scenarios detection method

A technology of malicious scripts and statistical features, applied in computing, transmission systems, computer security devices, etc.

Inactive Publication Date: 2007-03-07
BEIJING INSTITUTE OF TECHNOLOGYGY
View PDF0 Cites 39 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] The traditional antivirus technology mainly relies on signature matching to detect viruses, Trojan horses, and malicious webpages. This method is very effective for virus programs with fixed and unchanging characteristics, but has no effect on webpage scripts that have been encrypted and inserted into interference processing. , it is powerless to detect newly released webpage scripts exploiting vulnerabilities and newly released viruses and Trojan horse programs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Static feature based web page malicious scenarios detection method
  • Static feature based web page malicious scenarios detection method
  • Static feature based web page malicious scenarios detection method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The overall flow of the method for detecting malicious scripts on webpages based on statistical features proposed by the present invention is shown in FIG. 1 . First of all, you need to clear the distracting sentences in the web page. The first step is to clear the 00 code from the web page. The so-called 00 code refers to the character whose ASCII value is 00. Adding 00 code to the webpage does not affect the operation of the webpage, but it will affect the detection of malicious scripts. Therefore, before the statistical work is carried out, the 00 code in the webpage needs to be removed. . The second step is to clear the comment statement in the web page. A comment statement in a web page is a statement that starts with '* / ' and ends with '* / ', or starts with ' / / '. It is a description of a certain piece of code in the web page and has no effect when the web page is running, but It will affect the statistics of abnormal characters, so you need to clear the comments...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

This invention relates to computer safety field, which uses ill script statistical property to rapidly find out ill script. The principle of this invention uses ill page codes through process and the processed normal characters and abnormal characters have apparent difference and uses page character statistical property to test ill script.

Description

Technical field [0001] The patent of the present invention belongs to the field of computer security, and mainly uses the statistical features in malicious scripts to quickly and accurately detect whether a web page contains malicious scripts, so as to realize rapid detection of harmful web pages in the network, and prevent the running of malicious scripts in advance, so as to facilitate the Internet access. Users are provided with a secure network environment. Background technique [0002] Computer viruses, Trojans, spyware and malicious codes are the most important security threats to computer networks in recent years. In addition to spam emails, there is another important way in the transmission of computer viruses, Trojans, spyware and malicious codes, which is to use specially constructed web pages to spread viruses and Trojans to the computers of users who visit the web pages. Such web pages mainly use various vulnerabilities in operating systems, browsers, plug-ins, ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F17/30G06F21/00H04L29/06G06F21/56
Inventor 陶然李志勇张昊王越杜华
Owner BEIJING INSTITUTE OF TECHNOLOGYGY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap