87 results about "Script analysis" patented technology

Presently described is a decompilation method of operation and system for parsing executable code, identifying and recursively modeling data flows, identifying and recursively modeling control flow, and iteratively refining these models to provide a complete model at the nanocode level. The nanocode decompiler may be used to determine if flaws, security vulnerabilities, or general quality issues exist in the code. The nanocode decompiler outputs in a standardized, human-readable intermediate representation (IR) designed for automated or scripted analysis and reporting. Reports may take the form of a computer annotated and / or partially human annotated nanocode listing in the above-described IR. Annotations may include plain English statements regarding flaws and pointers to badly constructed data structures, unchecked buffers, malicious embedded code or “trap doors,” and the like. Annotations may be generated through a scripted analysis process or by means of an expert-enhanced, quasi-autonomous system.

The invention discloses a method for automatically positioning webpage Trojan mount point in a Trojan linked webpage and belongs to the field of computer security. The method comprises the following steps of: a) determining the Trojan linking webpage; b) acquiring a style sheet in the Trojan linked webpage, and performing script analysis on the scripts therein according to a step c); c) acquiringthe scripts in the Trojan linked webpage, outputting the positions of malicious scripts in a father webpage, wherein the malicious characteristics comprise: calling the objects of known bugs, containing malicious codes, opening malicious webpages, redirecting to the malicious webpages, and adding malicious webpages; and d) acquiring an embedded webpage in the Trojan linked webpage, comparing whether the website domain name is the same as the Trojan linked webpage for the embedded webpage determined to be subjected to Trojan linkage, if so, performing recursive analysis, otherwise, outputting the position of an embedded label in the father webpage. The method can be applied to the computer security, and comprises rapidly positioning the mount position of the webpage Trojan in the webpage to assist the website management personnel to rapidly remove the malicious contents contained in the webpage.

The invention discloses a method for editing image-text units based on a script, comprising the steps of: presetting a user interface template containing configuration structure information of the image-text units; defining a script grammar rule for the set user interface template through an extensible markup language; editing a script analysis code for the defined script grammar rule; dispatching the script analysis code to edit the script grammar rule, and typesetting the image-text units in the set user interface template; and encapsulating the typeset user interface template to form script allocation file information. The method disclosed by the invention can be used for improving the software development efficiency and reducing the software maintenance cost.

The invention discloses a data blood relationship analysis method, device, equipment and system and a readable storage medium, and the method comprises the steps: obtaining blood relationship data corresponding to an SQL statement through Hook when the data system executes the SQL statement; Determining a data table type of a data table where the blood relationship data is located through a streaming analysis system, and constructing a directed graph corresponding to the blood relationship data according to the data table type and the blood relationship data; And storing the directed graph inan HBase, and storing the blood relationship data in an HDFS. According to the invention, blood relationship data of different types of data systems are acquired through Hook; the data blood relationship analysis method is adaptive to different types of data systems; the directed graph corresponding to the blood relationship is obtained by analyzing the data table type and the association information of the data table where the blood relationship data is located, it is avoided that the blood relationship of the data is obtained through SQL script analysis, the complexity of analyzing the bloodrelationship of the data is reduced, and the expansibility of the data blood relationship analysis method is improved.

Presently described is a decompilation method of operation and system for parsing executable code, identifying and recursively modeling data flows, identifying and recursively modeling control flow, and iteratively refining these models to provide a complete model at the nanocode level. The nanocode decompiler may be used to determine if flaws, security vulnerabilities, or general quality issues exist in the code. The nanocode decompiler outputs in a standardized, human-readable intermediate representation (IR) designed for automated or scripted analysis and reporting. Reports may take the form of a computer annotated and / or partially human annotated nanocode listing in the above-described IR. Annotations may include plain English statements regarding flaws and pointers to badly constructed data structures, unchecked buffers, malicious embedded code or “trap doors,” and the like. Annotations may be generated through a scripted analysis process or by means of an expert-enhanced, quasi-autonomous system.

The invention discloses an SQL script analysis method, an SQL script analysis device and an SQL script analysis system. The SQL script analysis method comprises: A, extracting SQL scripts from running logs according to the SQL script execution sequence in the running log; B, performing the morphologic, grammar and semantic analysis of each SQL script in turn and generating a semantic result collection of the SQL scripts; and C, analyzing the type of the context of the SQL scripts according to the semantic result collection, generating the context correlation information of all SQL scripts in the running log, and acquiring the data flow information of the running log according to the semantic result collection and the context correlation information. When the SQL script analysis method, the SQL script analysis device and the SQL script analysis system, which are disclosed by the invention, are used, by morphologic, grammar and semantic analysis of the SQL scripts and the analysis on the context correlation, the loss of data flow semantic information is avoided when the metadata of the SQL scripts are generated; and thus, the integrity and accuracy of the acquired metadata of the SQL scripts are improved and the acquisition quality of the metadata of the SQL scripts is guaranteed.

A service system that diagnoses the vulnerability of a web service in real time mode and provides the result information thereof according to the present invention receives the input of a user web service address through the web service, automatically visits the corresponding web service to perform the real-time analysis on a web page and check if the web page has a vulnerability, and transmits the result information to a user PC. The service system can provide an intuitive service by displaying the discovery of the vulnerability, the procedure and an external URL linked to the web page are displayed on the user screen; find out the possibility of an outflow of the information contained in the URL by checking, on the basis of the web page analysis, whether a symbol or reserved word (system command) among the factors has been filtered; and display the classification of vulnerabilities of respective DBs by analyzing the result to be sent to an object system before being displayed on the web page. Further, the service system retains the data on the vulnerability of each DB in a program as a resource to compare the data with the result received from the web service and identify a problem if present; includes a script analysis section; and conducts an analysis on links according to an analyzed portion of an index page sot that the user can see the checking procedure via a taken place link in real time mode as well as the diagnosis progress that has been proceeded up to that point whenever desired and find links being connected. Moreover, when the service system analyzes the web page, the user can easily check an external link section and detect any external domain, if present, which spreads a malicious code in the web service. In addition, the service system allows the user to check over the internet the items for the service diagnosis selected by the user and the diagnosis result, and thus to personally see the problems and solutions therefor.

A method and system for analyzing scripts. A script is processed, which executes text blocks of code derived from the script and copied to an output file in a sequential order. The script is the first text block that is copied to the output file. Executing the text blocks includes interpreting each text block to generate and execute a corresponding interpreted block of code. Processing the script results in the text blocks being sequenced in the output file in the sequential order. The text blocks include an original text block of code that includes text that may be directly inferred from text appearing in the script. The blocks of code include a new text block of code, which includes text that may not be directly inferred from text appearing in the script. The new text block is generated from executing the original text block.

Provided are an apparatus, a system and a method for detecting and preventing malicious scripts. The apparatus for detecting and preventing malicious scripts includes a signature management unit managing a first signature including code pattern information of previously-detected malicious scripts, a script analysis unit receiving the first signature from the signature management unit and analyzing a first script, which is included in a web page, using the first signature, and a script processing unit receiving analysis result data from the script analysis unit and processing the first script according to the analysis result data.

The invention discloses a method for data collection in website statistics. The method comprises the implementation processes as follows: a javascript buried point script is firstly set; when a user opens a web page, a buried point javascript segment in the page is executed and a buried point is a data collection script; after data collection, a javascript transmits a data request to a background and transfers the collected data to the background in a form of an http parameter; and background script analysis parameters are recorded in an access log in a fixed format or stored into a database. Compared with the prior art, the method for data collection in website statistics has the advantages that the js script is executed in an asynchronous form and a normal browsing function of a browser is not blocked; various data information can be collected; and the collected information is transmitted to a special data collection background and is stored into the database or recorded in a log form, so that the data persistence is achieved, the condition that the data is not lost is ensured and the method is high in practicability and easy to generalize.

The invention provides a method for dynamically upgrading functions of a set top box, comprising the steps of: respectively defining some basic functions of the set top box to be corresponding script program files, setting a plurality of corresponding resource files according to the basic functions of the set top box, compressing each resource file and the corresponding script program file to generate a plurality of functional file packages, storing the functional file packages in flash storage of the set top box, when certain functions is required to be upgraded by a user, guiding a corresponding functional file package into a memory space by a main program of the set top box, analyzing by a script analysis engine, and completing the functional upgrade operation for the set top box by analyzing and invoking a basic functional function of the set top box and combining the resource files in the functional packages. By means of the method provided by the invention, the problem that whena program function is required to be upgraded by a user, the entire programs of the traditional digital television set top box are bound to be upgraded and the favorite function cannot be independently selected and upgraded is solved, and meanwhile, the problem that the set top box cannot operate because power failure and other abnormalities occur in the upgrading process is solved.

The invention relates to an internet-based remote sensing data analysis tool packaging service method. The method includes 1), installing a remote sensing data analysis tool packet on a website server cluster; 2), packaging analysis instruction programs and distributed file system data in the remote sensing data analysis tool packet according to an object-oriented scripting language in a server backend to obtain interface functions and data objects that can be called by interface objects; 3), calling the interface functions to subject the data objects to script analysis and processing according to the interface objects and uploading computing tasks to a sub-website server cluster through a local user on a terminal device; and 4), allocating the received computing tasks to computing nodes of the website server through a server cluster receiver and subjecting the computing tasks to parsing and execution through a script parsing engine. The single host environment remote sensing data analysis tool packet can be abstractly packaged into a basic interface, and the user can write remote sensing data analysis processing scripts on the webpage and can submit the scripts to the server cluster.

Computer-readable media having computer-executable instructions distinguish the script type of at least one portion of a writing input. At least one sub-word of a writing line of a handwritten document is identified and is processed to determine the associated writing style that includes a cursive writing style and a hand-printed writing style. The writing line is consequently associated with a script type. The script type of a writing line is determined from the script types of the sub-words in the writing line. When the number of sub-words having a first script type is greater than the number of sub-words having a second script type, the script type of the writing line is categorized as the first script type. In addition, a script analyzer determines a writing style of at least one sub-word and selects one of a plurality of neural networks to categorize the script type of a writing line.

The invention provides a device and a method for improving execution efficiency of service scripts, wherein the device comprises a service script analyzer and a service script processor. The service script analyzer is used for analyzing various types of selected service scripts and selecting a group of continuous marks representing a service action to form a common service object assembly. The service script processor is used for inquiring the service scripts according to service requirement identification to generate service execution codes and enabling the common service object assembly in the service scripts to perform code instantiation in the process of service execution code generation. The device and the method for improving the execution efficiency of the service scripts can accelerate generation of the execution codes of the service scripts by the service script processor, thereby improving the execution efficiency of the whole service scripts.

One embodiment relates to a computer-implemented method for detecting malicious scripts in web pages. A local engine and an application are executed at a client computer. The local engine intercepts an access by the application to a web page at a universal resource locator (URL) under a domain. The local engine determines scripts at the URL and scripts at other URLs under the domain. Using that information, the local engine determines if the scripts at the URL include one or more unique script(s). The local engine sends the unique script(s), if any, via a network to a script analyzer. The script analyzer may then perform emulation of the unique script(s) to detect malicious code therein. Other embodiments, aspects and features are also disclosed.

The invention provides a video processing method and device, computer equipment and a storage medium, and the method comprises the steps: obtaining a first video; and carrying out script analysis on the first video to obtain first script information of the first video, wherein the first script information comprises information of each lens in at least one lens included in the first video. Anothermethod comprises the following steps: sending a first video to a server; receiving first script information obtained by performing script analysis on the first video by the server, wherein the first script information comprises information of each lens in at least one lens in the first video; and displaying the first script information. According to the embodiment of the invention, script analysisis carried out on the first video by utilizing a computer to obtain the first script information of the first video, so that automatic generation of the video script is realized, and a favorable basis is provided for subsequent applications such as video creativity analysis or video production.

The invention discloses a sql automatic semantic analysis-based data lineage analysis system. The system comprises a sql preprocessing module, a lineage recognition module and a lineage display module connected in sequence, wherein the sql preprocessing module is used for establishing a keyword rule library, reading a to-be-detected data model structure and a data processing sql script from a database where to-be-detected data is located, and decomposing the data processing sql script to form a script analysis table; the lineage recognition module is used for carrying recognizing a keyword of the data processing sql script read from the sql preprocessing module, extracting lineage information from the data processing sql script corresponding to the keyword and storing the lineage information into the script analysis table. The invention furthermore discloses an analysis method of the sql automatic semantic analysis-based data lineage analysis system. According to the system and the method, lineage analysis can be carried out on other data on the basis of an ETL processing process.

The invention discloses a multi-person collaborative virtual-real mixed disassembly and assembly system and a multi-person collaborative virtual-real mixed disassembly and assembly method, which can be used for the process of multi-person collaborative disassembly and assembly in a virtual-real mixed environment reliably. The system mainly comprises a flow script customizing module, a script analysis module, a network communication protocol customizing module, a disassembly and assembly flow uniform scheduling module and a virtual-real mixed application module. In the invention, a format of an extensive makeup language (XML) disassembly and assembly script is customized, and a script file describing the disassembly and assembly flow can be generated quickly, so that the separation of the flows of disassembly and assembly nodes is realized; and a set of general network protocols for the virtual-real mixed disassembly and assembly is customized and used for communication between the scheduling module and the disassembly and assembly nodes. In the invention, a master control server is provided for scheduling the respective disassembly and assembly nodes uniformly and providing resources used for the virtual-real mixed application of the disassembly and assembly nodes to the XML script, so that the virtual-real mixed application modules of the disassembly and assembly nodes are operated independently of one another, the environment of the virtual-real mixed disassembly and assembly is shared simultaneously, and interaction between the disassembly and assembly nodes and the virtual-real immersion of operators are increased greatly.

The invention discloses a method for realizing linkage of query conditions in a self-defined report. For the query conditions in the self-defined report, interface components meeting input conditions are arranged and defined by a user, and linkage logic among the components is defined by the user at the same time, so that two kinds of variable logic exist, namely, component arrangement and definition logic and component linkage logic. According to the method, script design and analysis are performed, and the two kinds of the variable logic are expressed through flexible combination of script functions; logical functions of two kinds of dynamic logic are realized through analysis of a script by a script analysis engine; and business logic functions needed in the report query conditions are realized through script writing by the user in the self-defined report.

The invention discloses a webpage analysis container and method. The webpage analysis container comprises a webpage downloading module, a detection module, a script analysis module and a page rendering module. The webpage downloading module is used for sending requests to a web server repeatedly to obtain one html text of one webpage. The detection module is used for detecting the version of html in the html text, the version of a dynamic script of at least one dynamic script triggering event, and the classification of the version. The script analysis module is used for calling a script engine analysis the same as the version of the dynamic script of the dynamic script triggering event and the classification of the version, and operating at least one dynamic script triggering event. The page rendering module is used for calling a page rendering engine the same as the version of the detected html to render the webpage, and adding an operation result of the script engine to the webpage. According to the webpage analysis container and method, collection and analysis on complicated webpages including dynamic scripts of client sides are achieved, all contents in the webpage can be obtained, and precision and success rates of webpage collection are improved.

The invention discloses a programmable network service automation test system and programmable network service automation method. The programmable network service automation test system comprises a data processing subsystem, an interface display subsystem and a script analysis subsystem, wherein the data processing subsystem further comprises a data conversion module and an XXL file processing module; the interface display subsystem comprises an interface display module; and the script analysis subsystem further comprises a script module and a communication module. The invention also discloses a programmable network service automation method comprises the following steps: initializing a system, reading an XML file; receiving a user input command or a script program, and transmitting the user input command or the script program to the script module; using the script module to analyze the command ; transmitting a describing command to a server by the communication module after the corresponding describing command is searched and converted; and transmitting an execution result to the interface display module through the communication module and the script module after the server executes the command. The programmable network service automation test system has a short development period, programmable ability and good extensibility and can better satisfy market requirements.

The invention provides a data tracing and influence relationship analysis method based on database script analysis. The analysis method comprises the following steps that step 1, morphology and grammar files based on a JavaCC database script are built according to SQL (structured query language) standards; step 2, according to the built morphology and grammar files, a database script resolver is generated, and the relevant Java type is created; step 3, the database script resolver analyses the received database script, relevant data in the script is obtained for generating an SQL tree; and step 4, the original data and the influence relationship between the original data and the target data are found and obtained according to the generated SQL tree. Through the data tracing and influence relationship analysis method based on the database script analysis provided by the invention, the data script analysis can be realized, and in addition, the influence relationship of the data tracing and the data can be realized according to analysis information.

Provided are an apparatus, a system and a method for detecting and preventing malicious scripts. The apparatus for detecting and preventing malicious scripts includes a signature management unit managing a first signature including code pattern information of previously-detected malicious scripts, a script analysis unit receiving the first signature from the signature management unit and analyzing a first script, which is included in a web page, using the first signature, and a script processing unit receiving analysis result data from the script analysis unit and processing the first script according to the analysis result data.

The invention discloses a web site docking analysis method based on a dynamic loading mechanism, wherein a dynamic analysis service which supports a real-time updating operation can be supplied to outside. The web site docking analysis method comprises the following steps of providing a server external service interface and a support script analysis; supplying an analysis script searching service; supplying an analysis script maintenance; acquiring data by means of a dynamic configuration crawler script; and after the steps are loaded, providing a real-time analysis service to outside through starting a server. The web site docking analysis method supports docking with a plurality of web sites in a same kind and furthermore can ensure a correct analysis result through configuring and calling a latest analysis script on condition that system services are not stopped.

The invention discloses a cloud integrated information cooperation platform for film and television production management and analysis. The cloud integrated information cooperation platform comprises a terminal coordinator, a resource pool, an expandable rule module, a script element pool, an interface platform, a data model and an application module, wherein the resource pool and the terminal coordinator carry out bidirectional data exchange; the expandable rule module comprises an intelligent script analysis engine and a module; the resource pool is used for carrying out the data exchange on the script element pool through the expandable rule module; the script element pool carries out the data exchange with the data model through a cloud storage manner; the interface platform carries out the data exchange with the data model through the resource pool; the data model carries out the data exchange with the application module; the application module is arranged on an APP mobile terminal of the terminal coordinator; an external resource is accessed between the interface platform and a PAD mobile terminal of the terminal coordinator. With the adoption of the cloud integrated information collaborative platform, the time for pre-period sorting of scripts is greatly shortened, the cooperation capability and communication efficiency of a production team are improved, the working amount of repeated labor and the communication cost are reduced, and the reutilization efficiency of resources is effectively improved.

The invention provides a method for upgrading script configuration of a set top box, which comprises the following steps of: packeting programs of the set top box needing to be upgraded, configuration script files defined with a format arrangement of a database of the set top box and a function configuration arrangement of the set top box into upgrading data, transmitting the upgrading data to a front end network of a TV center, receiving the upgrading data by upgrading programs of the set top box, analyzing the configuration script files by a script analysis engine of the set top box, rearranging the database and the function configuration of the set top box on the basis of a format defined in the script file, and upgrading main programs of the set top box. The method ensures that original program arrangement order and various setting functions of the set top box are not changed after the set top box is updated, thereby being convenient for users to operate.

In the method, relative data file is stored as server end first, then computer at client end is started up through key disc to have it set up connection with server end, script in the data file is analysed according to script analysis program of the key disc and batch processing file for preparing test master disc is generated as per analysing result, finally the batch procssing file is executed one by one to finalize preparation of test master disc.