31 results about "Packet injection" patented technology

A method and apparatus are disclosed for analyzing the operation of one or more network gateways, such as firewalls or routers, that perform a packet filtering function in a network environment. Given a user query, the disclosed firewall analysis tool simulates the behavior of the various firewalls, taking into account the topology of the network environment, and determines which portions of the services or machines specified in the original query would manage to reach from the source to the destination. The relevant packet-filtering configuration files are collected and an internal representation of the implied security policy is derived. A graph data structure is used to represent the network topology. A gateway-zone graph permits the firewall analysis tool to determine where given packets will travel in the network, and which gateways will be encountered along those paths. In this manner, the firewall analysis tool can evaluate a query object against each rule-base object, for each gateway node in the gateway-zone graph that is encountered along each path between the source and destination. A graphical user interface is provided for receiving queries, such as whether one or more given services are permitted between one or more given machines, and providing results. A spoofing attack can be simulated by allowing the user to specify where packets are to be injected into the network, which may not be the true location of the source host-group.

A method, apparatus and algorithms are disclosed for operating an open electrostatic trap (E-trap) or a multi-pass TOF mass spectrometer with an extended flight path. A string of start pulses with non equal time intervals is employed for triggering ion packet injection into the analyzer, a long spectrum is acquired to accept ions from the entire string and a true spectrum is reconstructed by eliminating or accounting overlapping signals at the data analysis stage while using logical analysis of peak groups. The method is particularly useful for tandem mass spectrometry wherein spectra are sparse. The method improves the duty cycle, the dynamic range and the space charge throughput of the analyzer and of the detector, so as the response time of the E-trap analyzer. It allows flight extension without degrading E-trap sensitivity.

According to the present invention, there is provided a method for controlling congestion in a communications network, the method including receiving congestion feedback data relating to said network, adjusting at least one of a window limit and a rate limit based on said congestion feedback data and injecting data packets onto said network according to said window limit and said rate limit.

A method, apparatus and algorithms are disclosed for operating an open electrostatic trap (E-trap) or a multi-pass TOF mass spectrometer with an extended flight path. A string of start pulses with non equal time intervals is employed for triggering ion packet injection into the analyzer, a long spectrum is acquired to accept ions from the entire string and a true spectrum is reconstructed by eliminating or accounting overlapping signals at the data analysis stage while using logical analysis of peak groups. The method is particularly useful for tandem mass spectrometry wherein spectra are sparse. The method improves the duty cycle, the dynamic range and the space charge throughput of the analyzer and of the detector, so as the response time of the E-trap analyzer. It allows flight extension without degrading E-trap sensitivity.

Methods and systems for communicating alert messages to target communications devices in a target physical location are disclosed. The target devices may not be preconfigured to be discovered or to receive the alert message. Network sources are queried to identify accessible logical locations, which are associated with physical locations in a database. The logical locations include an intelligent network source which, having received the alert message, detects nearby devices in the target physical location. The system prepares and communicates the alert message to the target device. The intelligent network source may be configured to prepare and communicate the alert message without any intermediate system step of formulating a list of recipients. Auto-discovery and message delivery methods employ protocol packet injection, network and access point spoofing, and Bluetooth signaling. Auto-discovery and unconfigured delivery methods can be used to reveal the presence of devices in an area.

The present invention discloses methods for effective network-security inspection in virtualized environments, the methods including the steps of: providing a data packet, embodied in machine-readable signals, being sent from a sending virtual machine to a receiving virtual machine via a virtual switch; intercepting the data packet by a sending security agent associated with the sending virtual machine; injecting the data packet into an inspecting security agent associated with a security virtual machine via a direct transmission channel which bypasses the virtual switch; forwarding the data packet to the security virtual machine by employing a packet-forwarding mechanism; determining, by the security virtual machine, whether the data packet is allowed for transmission; upon determining the data packet is allowed, injecting the data packet back into the sending security agent via the direct transmission channel; and forwarding the data packet to the receiving virtual machine via the virtual switch.

A device for manipulating data traffic related to a target connected to a data communications network whose elements communicate by means of an HTTP protocol comprises: a redirection device, which is adapted to be connected to the data communications network by means of a plurality of sniffing interfaces and a packet sending interface; a proxy, which is adapted to be connected to the data communications network by means of an HTTP connection interface, a packet receiving interface and a packet injection interface; and is characterized in that the redirection device is configured to monitor, by means of the sniffing interfaces, the network traffic in order to identify within the network traffic at least one data packet associated with the target and to redirect, by means of the packet sending interface, the at least one data packet associated with the target toward the proxy.

Provided are a fuzzing system and method of a distributed computing environment (DCE) remote procedure call (RPC) object. The fuzzing system includes a file manager, a random data generator, a RPC packet, and a packet injector. The file manager obtains necessary information by parsing and analyzing an idl file for a target object for fuzzing and a file having information about a Named Pipe file. The random data generator generates a random value using a system clock as a factor. The RPC packet creator embodies protocols used for RPC communication by functions and generating a RPC packet for RPC communication. The packet injector inserts the necessary information and the random value into the generated RPC packet and transmits the generated RPC packet to the target object for fuzzing.

The invention discloses a Zigbee communication dynamic blocking system and blocking method thereof. The Zigbee communication dynamic blocking system includes a CPU, a target scanning and locking module, a blocking thread pool, firmware capable of supporting packet injection and Zigbee modules which are connected in sequence. The firmware capable of supporting packet injection is of a multithreading structure, and the Zigbee modules correspond to the number of firmware capable of supporting packet injection. The Zigbee modules are connected with the firmware capable of supporting packet injection. The Zigbee communication dynamic blocking system provided by the invention can realize dynamic blocking, and does not need closing or restarting a network. Point-to-point blocking is adopted, only corresponding equipment is disconnected with a gateway, and normal communication of other equipment is not influenced.

The invention relates to a tandem mass spectrometer and a mass spectrometry method, aiming at improving the precision of structural analysis and identification of compounds by collecting information of many product ions in a short time. For this purpose, an ion trap (5) is arranged between the collision cell (3) and the time-of-flight mass separator (6). During the time period during which precursor ions originating from the same compound are selected using the quadrupole mass filter (2), the collision energy is changed from one to the other. Various product ions generated by dissociation under multi-level collision energy respectively and precursor ions that are not dissociated are temporarily trapped in the ion trap (5), and are captured in the form of packets in the state where these ions are mixed is injected and introduced into the time-of-flight mass separator (6) to be subjected to mass spectrometry. Thereby, in the data processing unit ( 21 ), an MS / MS mass spectrum is generated in which the product ions produced in the various dissociation modes occur under the various CID conditions.

The invention discloses an agent-based intrusive social data collection method, which relates to the field of information collection. The invention includes a WeChat client, a proxy server, a program server and a WeChat server; a packet capture tool is used to obtain the data packet returned by the server to the client, inject JS and return it to the client, and automatically execute the JS code when the client loads the page, so that The browser establishes a connection with the program, and the program sends instructions to the browser to control the entire acquisition process. The invention loads more data through the pull-down operation, grabs the article link, and then executes the detailed link to obtain the article content, the number of likes, the number of readings and comments, etc., the article collection data of the official account is comprehensive, the operation is simple, and the data collection efficiency is improved.

It is a message division filter and management method based on strategy tree, which comprises the following steps: first to align strategy to users and pre-edit strategy tree; to generate strategy tree memory image by pre-edit files; to get network card subarea property through data pack pre-process; then to inject data pack into strategy tree analyze engineer to get next operation of data pack and its relative property.

The invention provides a system and method for protecting privacy through misleading sniffing tools in a smart home environment. The system includes: a network feature learning module, a privacy protection policy formulation module and a network data packet injection module. The invention is based on the data packet sniffing analysis technology and the data packet injection technology in the wireless network environment, can run independently in third-party hardware, and can be conveniently and quickly deployed in the smart home environment. The invention does not modify any part of the smart home environment, does not affect the normal operation of the smart home environment, does not require any external support, and has high flexibility and strong adaptability. The invention simulates a fake user in a real smart home environment by injecting wireless network data packets. Since its simulation strategy is based on the network feature information in the real smart home environment, the simulated fake users are no different from real users, and cannot be distinguished and identified by attackers, so as to protect the privacy of users in the smart home environment.

The present technology concerns a mainframe injection component (MIC) for manipulating at least one data packet communicated between at least one emulator and at least one mainframe. A packet processor is configured to receive the at least one data packet, manipulate the at least one received data packet to produce at least one modified data packet, and inject the at least one modified data packet into the communication between the at least one emulator and the at least one mainframe. The packet processor is further configured to retrieve at least one processing instruction from a repository according to at least one pre-defined processing rule and to apply the at least one processing instruction on the at least one received data packet to produce the at least one modified data packet.

The invention discloses an on-chip network optimization method based on approximate calculation, which includes a data clipper, a data restorer, a flow predictor, a global controller and a local controller; Carry out tailoring to shorten the length of the data packet; the data restorer restores the lost data after receiving the trimmed data packet; the traffic predictor predicts the data flow in the next control interval according to the past node communication situation; the global controller is used for From a global perspective, the optimal configuration of each node is calculated based on the global information and the quality requirements of users, and the control information is sent to each node; the local controller, according to the received control information, injects into the network for each Data packets are configured for the data loss rate. The method can optimize the performance and power consumption of the network on chip at a lower cost without violating the user's requirements on the output quality.

Embodiments of the present application provide a cloud network, a measurement system, method, device, and storage medium for the cloud network. In the embodiment of this application, for the cloud network, the measurement intention of the tenant in the cloud network is automatically sensed, and the measurement rule is generated according to the measurement intention, and based on the measurement rule, the network element device on the path to be tested is injected into the network element device on the path to be tested. The measurement request message can analyze the network quality of the cloud network simply, effectively and accurately by means of the measurement record information generated when the measurement request message passes through different network element devices. Furthermore, the measurement process can be greatly simplified by intentionalizing tenant measurement requests; by bypassing packet injection, it is beneficial to reduce the intrusion into the tenant network environment; at the same time, the active packet injection method can avoid actual Application traffic dependencies allow network quality measurements to be made even when tenants are not generating actual application traffic.

The present invention provides a packaging display box and box set for beauty accessories combined with blister and injection molding. The packaging display box includes a blister inner box, a first injection molding frame and a second injection molding frame. The first injection molding package frame and the second injection molding package frame are set on the side of the blister inner box; the box group includes a plurality of packaging display boxes, and each packaging display box consists of a blister inner box and a side edge of the blister inner box The inner seal is composed of a first injection molding frame and a second injection molding frame, and an easy-to-tear thin strip is formed between every two adjacent first injection molding frames and / or second injection molding frames. The present invention not only enriches the diversification of products, but also improves the overall texture and grade of the products under the condition that the cost is basically not increased. At the same time, consumers can see the styles of beauty accessories through the blister inner box with high transparency. , Play a very good display role, save the trouble of opening and closing the box.

The invention discloses a method for controlling the data packet sending rate of an energy efficiency router of the internet, and belongs to the technical field of internet. The method is finished through the following steps: measuring the speed rate of a data packet arriving in a router port; establishing an energy efficiency router data packet sending rate control model; getting the data packet seeding rate by a genetic search method; and injecting the data packet into a link. By controlling the data packet sending rate of the router, the aim of improving the energy efficiency of the link is improved; meanwhile, the overall optimal control rate can be obtained by solving an energy efficiency optimizing module by the genetic search method to avoid locally optimal solution.

A device for manipulating data traffic related to a target connected to a data communications network whose elements communicate by means of an HTTP protocol comprises: a redirection device, which is adapted to be connected to the data communications network by means of a plurality of sniffing interfaces and a packet sending interface; a proxy, which is adapted to be connected to the data communications network by means of an HTTP connection interface, a packet receiving interface and a packet injection interface; and is characterized in that the redirection device is configured to monitor, by means of the sniffing interfaces, the network traffic in order to identify within the network traffic at least one data packet associated with the target and to redirect, by means of the packet sending interface, the at least one data packet associated with the target toward the proxy.