CN104980309B - 网站安全检测方法及装置 - Google Patents
网站安全检测方法及装置 Download PDFInfo
- Publication number
- CN104980309B CN104980309B CN201410144318.7A CN201410144318A CN104980309B CN 104980309 B CN104980309 B CN 104980309B CN 201410144318 A CN201410144318 A CN 201410144318A CN 104980309 B CN104980309 B CN 104980309B
- Authority
- CN
- China
- Prior art keywords
- domain name
- link
- scanned
- new
- task
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000001514 detection method Methods 0.000 title claims abstract description 57
- 238000000034 method Methods 0.000 claims abstract description 41
- 238000012546 transfer Methods 0.000 claims abstract description 22
- 238000000605 extraction Methods 0.000 claims abstract description 16
- 238000012545 processing Methods 0.000 claims abstract description 16
- 238000012360 testing method Methods 0.000 claims description 12
- 230000009286 beneficial effect Effects 0.000 abstract description 5
- 238000012544 monitoring process Methods 0.000 abstract description 5
- 238000005516 engineering process Methods 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 241000208340 Araliaceae Species 0.000 description 2
- 102000010954 Link domains Human genes 0.000 description 2
- 108050001157 Link domains Proteins 0.000 description 2
- 235000005035 Panax pseudoginseng ssp. pseudoginseng Nutrition 0.000 description 2
- 235000003140 Panax quinquefolius Nutrition 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 235000008434 ginseng Nutrition 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 238000011076 safety test Methods 0.000 description 2
- 241000239290 Araneae Species 0.000 description 1
- 241000270322 Lepidosauria Species 0.000 description 1
- 208000005374 Poisoning Diseases 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 235000014510 cooky Nutrition 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000001035 drying Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 231100000572 poisoning Toxicity 0.000 description 1
- 230000000607 poisoning effect Effects 0.000 description 1
- 230000009467 reduction Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1433—Vulnerability analysis
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Description
Claims (8)
Priority Applications (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410144318.7A CN104980309B (zh) | 2014-04-11 | 2014-04-11 | 网站安全检测方法及装置 |
US15/303,216 US9954886B2 (en) | 2014-04-11 | 2014-12-31 | Method and apparatus for detecting website security |
PCT/CN2014/095944 WO2015154539A1 (zh) | 2014-04-11 | 2014-12-31 | 网站安全检测方法及装置 |
US15/939,133 US20180219907A1 (en) | 2014-04-11 | 2018-03-28 | Method and apparatus for detecting website security |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410144318.7A CN104980309B (zh) | 2014-04-11 | 2014-04-11 | 网站安全检测方法及装置 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN104980309A CN104980309A (zh) | 2015-10-14 |
CN104980309B true CN104980309B (zh) | 2018-04-20 |
Family
ID=54276441
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410144318.7A Active CN104980309B (zh) | 2014-04-11 | 2014-04-11 | 网站安全检测方法及装置 |
Country Status (3)
Country | Link |
---|---|
US (2) | US9954886B2 (zh) |
CN (1) | CN104980309B (zh) |
WO (1) | WO2015154539A1 (zh) |
Families Citing this family (26)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106899549B (zh) * | 2015-12-18 | 2020-02-07 | 北京奇虎科技有限公司 | 一种网络安全检测方法及装置 |
US10440042B1 (en) * | 2016-05-18 | 2019-10-08 | Area 1 Security, Inc. | Domain feature classification and autonomous system vulnerability scanning |
CN106713347B (zh) * | 2017-01-18 | 2019-06-11 | 国网江苏省电力公司电力科学研究院 | 一种电力移动应用越权访问漏洞检测方法 |
CN108632219B (zh) * | 2017-03-21 | 2021-04-27 | 腾讯科技(深圳)有限公司 | 一种网站漏洞检测方法、检测服务器、***及存储介质 |
CN108667770B (zh) * | 2017-03-29 | 2020-12-18 | 腾讯科技(深圳)有限公司 | 一种网站的漏洞测试方法、服务器及*** |
CN107634945B (zh) | 2017-09-11 | 2018-06-22 | 平安科技(深圳)有限公司 | 网站漏洞扫描方法、装置、计算机设备及存储介质 |
CN108173814B (zh) * | 2017-12-08 | 2021-02-05 | 深信服科技股份有限公司 | 钓鱼网站检测方法、终端设备及存储介质 |
CN108282489B (zh) * | 2018-02-07 | 2020-01-31 | 网宿科技股份有限公司 | 一种漏洞扫描方法、服务端及*** |
CN108449355A (zh) * | 2018-04-04 | 2018-08-24 | 上海有云信息技术有限公司 | 一种漏洞扫描方法及*** |
CN109033838A (zh) * | 2018-07-27 | 2018-12-18 | 平安科技(深圳)有限公司 | 网站安全检测方法和装置 |
CN110061979B (zh) * | 2019-04-01 | 2022-01-11 | 视联动力信息技术股份有限公司 | 一种业务对象的检测方法和装置 |
CN111104188B (zh) * | 2019-11-11 | 2024-05-10 | 中盈优创资讯科技有限公司 | 漏洞扫描器的调度方法及装置 |
CN110971599A (zh) * | 2019-11-29 | 2020-04-07 | 杭州迪普科技股份有限公司 | 漏洞扫描方法和装置 |
CN110825541A (zh) * | 2019-11-30 | 2020-02-21 | 东莞市诺尔检测科技有限公司 | 一种用于家用电器的安全检测数据处理*** |
CN111124841B (zh) * | 2019-12-09 | 2023-08-18 | 广州品唯软件有限公司 | 一种异常页面的报警方法、装置及计算机*** |
RU2743974C1 (ru) * | 2019-12-19 | 2021-03-01 | Общество с ограниченной ответственностью "Группа АйБи ТДС" | Система и способ сканирования защищенности элементов сетевой архитектуры |
CN111314326B (zh) * | 2020-02-01 | 2022-06-21 | 深信服科技股份有限公司 | Http漏洞扫描主机的确认方法、装置、设备及介质 |
CN111428179B (zh) * | 2020-03-19 | 2023-09-19 | 新方正控股发展有限责任公司 | 图片监测方法、装置及电子设备 |
CN112906005A (zh) * | 2021-02-02 | 2021-06-04 | 浙江大华技术股份有限公司 | Web漏洞扫描方法、装置、***、电子装置和存储介质 |
CN112887173B (zh) * | 2021-02-19 | 2023-05-23 | 山东英信计算机技术有限公司 | 一种存储网络检测方法、装置、设备及可读存储介质 |
CN113422759B (zh) * | 2021-06-10 | 2023-04-18 | 杭州安恒信息技术股份有限公司 | 漏洞扫描方法、电子装置和存储介质 |
CN113407948B (zh) * | 2021-06-25 | 2022-05-27 | 苏州浪潮智能科技有限公司 | 一种基于预加载的安全扫描方法及装置 |
CN113536086B (zh) * | 2021-06-30 | 2023-07-14 | 北京百度网讯科技有限公司 | 模型训练方法、账号评分方法、装置、设备、介质和产品 |
CN113836533B (zh) * | 2021-09-27 | 2024-05-24 | 深信服科技股份有限公司 | 一种文件监测方法、装置、电子设备及可读存储介质 |
CN115426202B (zh) * | 2022-11-03 | 2023-01-24 | 北京源堡科技有限公司 | 扫描任务下发方法、装置、计算机设备及可读存储介质 |
CN116305154B (zh) * | 2023-03-08 | 2023-11-21 | 北京航天驭星科技有限公司 | 一种卫星测控软件的漏洞管理方法及相关设备 |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103258032A (zh) * | 2013-05-10 | 2013-08-21 | 清华大学 | 平行网页获取方法及装置 |
Family Cites Families (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1870493A (zh) * | 2006-06-15 | 2006-11-29 | 北京华景中天信息技术有限公司 | 网站安全漏洞扫描方法 |
WO2008142710A2 (en) * | 2007-05-24 | 2008-11-27 | Iviz Techno Solutions Pvt. Ltd | Method and system for simulating a hacking attack on a network |
CN100461184C (zh) * | 2007-07-10 | 2009-02-11 | 北京大学 | 网络搜索中的基于链接层次分类的主题爬取方法 |
US8286239B1 (en) * | 2008-07-24 | 2012-10-09 | Zscaler, Inc. | Identifying and managing web risks |
US8763071B2 (en) * | 2008-07-24 | 2014-06-24 | Zscaler, Inc. | Systems and methods for mobile application security classification and enforcement |
EP2222048A1 (en) * | 2009-02-24 | 2010-08-25 | BRITISH TELECOMMUNICATIONS public limited company | Detecting malicious behaviour on a computer network |
WO2010144796A2 (en) * | 2009-06-12 | 2010-12-16 | QinetiQ North America, Inc. | Integrated cyber network security system and method |
CN101964025B (zh) * | 2009-07-23 | 2016-02-03 | 北京神州绿盟信息安全科技股份有限公司 | Xss检测方法和设备 |
KR101092024B1 (ko) * | 2010-02-19 | 2011-12-12 | 박희정 | 웹 서비스의 실시간 취약성 진단 및 결과정보 제공 서비스 시스템 |
US8516585B2 (en) * | 2010-10-01 | 2013-08-20 | Alcatel Lucent | System and method for detection of domain-flux botnets and the like |
US8677487B2 (en) * | 2011-10-18 | 2014-03-18 | Mcafee, Inc. | System and method for detecting a malicious command and control channel |
CN102710646B (zh) * | 2012-06-06 | 2016-08-03 | 珠海市君天电子科技有限公司 | 一种钓鱼网站的收集方法和*** |
CN103414718A (zh) * | 2013-08-16 | 2013-11-27 | 蓝盾信息安全技术股份有限公司 | 一种分布式Web漏洞扫描的方法 |
US9203849B2 (en) * | 2013-12-04 | 2015-12-01 | Apple Inc. | Preventing URL confusion attacks |
-
2014
- 2014-04-11 CN CN201410144318.7A patent/CN104980309B/zh active Active
- 2014-12-31 WO PCT/CN2014/095944 patent/WO2015154539A1/zh active Application Filing
- 2014-12-31 US US15/303,216 patent/US9954886B2/en active Active
-
2018
- 2018-03-28 US US15/939,133 patent/US20180219907A1/en not_active Abandoned
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN103258032A (zh) * | 2013-05-10 | 2013-08-21 | 清华大学 | 平行网页获取方法及装置 |
Also Published As
Publication number | Publication date |
---|---|
US20180219907A1 (en) | 2018-08-02 |
US20170034203A1 (en) | 2017-02-02 |
CN104980309A (zh) | 2015-10-14 |
US9954886B2 (en) | 2018-04-24 |
WO2015154539A1 (zh) | 2015-10-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104980309B (zh) | 网站安全检测方法及装置 | |
CN105184159B (zh) | 网页篡改的识别方法和装置 | |
US8850585B2 (en) | Systems and methods for automated malware artifact retrieval and analysis | |
US9208309B2 (en) | Dynamically scanning a web application through use of web traffic information | |
US7865953B1 (en) | Methods and arrangement for active malicious web pages discovery | |
CN105868635B (zh) | 用于应对恶意软件的方法和装置 | |
CN105635178B (zh) | 保证安全的阻塞式网络访问方法及装置 | |
CN107360162A (zh) | 一种网络应用防护方法和装置 | |
US10586045B2 (en) | System and method for detecting malware in mobile device software applications | |
CN105306467B (zh) | 网页数据篡改的分析方法及装置 | |
CN105302707B (zh) | 应用程序的漏洞检测方法和装置 | |
US20220198025A1 (en) | Web Attack Simulator | |
CN104363252B (zh) | 网站安全检测方法与装置 | |
CN105302815B (zh) | 网页的统一资源定位符url的过滤方法和装置 | |
CN103414758B (zh) | 日志处理方法及装置 | |
CN111783096A (zh) | 检测安全漏洞的方法和装置 | |
CN104040538B (zh) | 一种互联网应用交互方法、装置及*** | |
CN106899549A (zh) | 一种网络安全检测方法及装置 | |
JP5752642B2 (ja) | 監視装置および監視方法 | |
CN104537304B (zh) | 文件查杀方法、装置及*** | |
CN106506545A (zh) | 一种网络安全威胁评估***及方法 | |
CN107239701A (zh) | 识别恶意网站的方法及装置 | |
CN107644161A (zh) | 样本的安全测试方法、装置和设备 | |
CN103530337B (zh) | 识别统一资源定位符url中无效参数的设备及方法 | |
CN107766224B (zh) | 测试方法和测试装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C41 | Transfer of patent application or patent right or utility model | ||
TA01 | Transfer of patent application right |
Effective date of registration: 20161123 Address after: 100016 Jiuxianqiao Chaoyang District Beijing Road No. 10, building 15, floor 17, layer 1701-26, 3 Applicant after: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. Address before: 100088 Beijing city Xicheng District xinjiekouwai Street 28, block D room 112 (Desheng Park) Applicant before: BEIJING QIHOO TECHNOLOGY Co.,Ltd. Applicant before: Qizhi software (Beijing) Co.,Ltd. |
|
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP03 | Change of name, title or address |
Address after: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee after: Qianxin Technology Group Co.,Ltd. Address before: 100016 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing. Patentee before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. |
|
CP03 | Change of name, title or address | ||
TR01 | Transfer of patent right |
Effective date of registration: 20201225 Address after: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee after: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Patentee after: Qianxin Technology Group Co.,Ltd. Address before: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Patentee before: Qianxin Technology Group Co.,Ltd. |
|
TR01 | Transfer of patent right | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee after: Qianxin Wangshen information technology (Beijing) Co.,Ltd. Patentee after: Qianxin Technology Group Co.,Ltd. Address before: 100044 2nd floor, building 1, yard 26, Xizhimenwai South Road, Xicheng District, Beijing Patentee before: LEGENDSEC INFORMATION TECHNOLOGY (BEIJING) Inc. Patentee before: Qianxin Technology Group Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |