Attack detection method, apparatus, device, and computer-readable storage medium
By performing fine-grained feature analysis on traffic data's metadata and content data, and combining basic behavioral features, semantic features, and temporal features, this technology solves the problems of low accuracy and insufficient real-time performance in existing network attack detection technologies, and achieves accurate identification and real-time protection against Webshell code.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Patents(China)
- Current Assignee / Owner
- BEIJING TOPWALK INFORMATION TECH CO LTD
- Filing Date
- 2023-12-26
- Publication Date
- 2026-06-23
AI Technical Summary
Existing attack detection methods struggle to identify Webshell code modified by attackers through obfuscation, bypassing, and encryption, resulting in low accuracy in network attack detection and making them unsuitable for real-time monitoring and protection against network attacks.
The traffic data to be detected is divided into two types: metadata and content data. The first feature and the second feature are extracted respectively. By comprehensively applying basic behavioral features, semantic features and temporal features, more granular feature analysis is achieved to identify network attacks.
It improves the accuracy of network attack detection, meets the requirements for real-time monitoring and protection against network attacks, and can identify Webshell code that has been modified through obfuscation, bypass, and encryption.
Smart Images

Figure CN117938455B_ABST