CN112769833B - 命令注入攻击的检测方法、装置、计算机设备和存储介质 - Google Patents
命令注入攻击的检测方法、装置、计算机设备和存储介质 Download PDFInfo
- Publication number
- CN112769833B CN112769833B CN202110037147.8A CN202110037147A CN112769833B CN 112769833 B CN112769833 B CN 112769833B CN 202110037147 A CN202110037147 A CN 202110037147A CN 112769833 B CN112769833 B CN 112769833B
- Authority
- CN
- China
- Prior art keywords
- injection attack
- command injection
- data packet
- data
- rule
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
- H04L41/0631—Management of faults, events, alarms or notifications using root cause analysis; using analysis of correlation between notifications, alarms or events based on decision criteria, e.g. hierarchy, tree or time analysis
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
- H04L63/1466—Active attacks involving interception, injection, modification, spoofing of data unit addresses, e.g. hijacking, packet injection or TCP sequence number attacks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
Abstract
Description
Claims (9)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110037147.8A CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202110037147.8A CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN112769833A CN112769833A (zh) | 2021-05-07 |
CN112769833B true CN112769833B (zh) | 2023-01-24 |
Family
ID=75701611
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202110037147.8A Active CN112769833B (zh) | 2021-01-12 | 2021-01-12 | 命令注入攻击的检测方法、装置、计算机设备和存储介质 |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112769833B (zh) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113486343A (zh) * | 2021-07-13 | 2021-10-08 | 深信服科技股份有限公司 | 一种攻击行为的检测方法、装置、设备和介质 |
CN114386023A (zh) * | 2021-12-30 | 2022-04-22 | 恒安嘉新(北京)科技股份公司 | 终端数据检测方法、装置、计算机设备及存储介质 |
CN114900352A (zh) * | 2022-04-25 | 2022-08-12 | 中国工商银行股份有限公司 | 旁路阻断方法、装置、电子设备、介质和程序产品 |
CN115348096B (zh) * | 2022-08-15 | 2023-12-19 | 中国电信股份有限公司 | 命令注入漏洞检测方法、***、设备及存储介质 |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388763A (zh) * | 2007-09-12 | 2009-03-18 | 北京启明星辰信息技术有限公司 | 一种支持多种数据库类型的sql注入攻击检测*** |
WO2018018699A1 (zh) * | 2016-07-29 | 2018-02-01 | 广州市乐商软件科技有限公司 | 网站脚本攻击防范方法及装置 |
CN107657174A (zh) * | 2016-07-26 | 2018-02-02 | 北京计算机技术及应用研究所 | 一种基于协议指纹的数据库入侵检测方法 |
CN110417679A (zh) * | 2018-04-26 | 2019-11-05 | 阿里巴巴集团控股有限公司 | 规避旁路阻断的方法、装置和*** |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101425937B (zh) * | 2007-11-02 | 2011-07-20 | 北京启明星辰信息技术股份有限公司 | 一种适于高速局域网环境的sql注入攻击检测*** |
CN104135490A (zh) * | 2014-08-14 | 2014-11-05 | 浪潮(北京)电子信息产业有限公司 | 入侵检测***分析方法和入侵检测*** |
-
2021
- 2021-01-12 CN CN202110037147.8A patent/CN112769833B/zh active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101388763A (zh) * | 2007-09-12 | 2009-03-18 | 北京启明星辰信息技术有限公司 | 一种支持多种数据库类型的sql注入攻击检测*** |
CN107657174A (zh) * | 2016-07-26 | 2018-02-02 | 北京计算机技术及应用研究所 | 一种基于协议指纹的数据库入侵检测方法 |
WO2018018699A1 (zh) * | 2016-07-29 | 2018-02-01 | 广州市乐商软件科技有限公司 | 网站脚本攻击防范方法及装置 |
CN110417679A (zh) * | 2018-04-26 | 2019-11-05 | 阿里巴巴集团控股有限公司 | 规避旁路阻断的方法、装置和*** |
Also Published As
Publication number | Publication date |
---|---|
CN112769833A (zh) | 2021-05-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN112769833B (zh) | 命令注入攻击的检测方法、装置、计算机设备和存储介质 | |
CN112887274B (zh) | 命令注入攻击的检测方法、装置、计算机设备和存储介质 | |
US9870470B2 (en) | Method and apparatus for detecting a multi-stage event | |
US9836600B2 (en) | Method and apparatus for detecting a multi-stage event | |
US9860278B2 (en) | Log analyzing device, information processing method, and program | |
US6279113B1 (en) | Dynamic signature inspection-based network intrusion detection | |
US20050182950A1 (en) | Network security system and method | |
CN104811449A (zh) | 检测撞库攻击方法及*** | |
CN114465739A (zh) | 异常识别方法和***、存储介质及电子装置 | |
CN112019478A (zh) | 基于trdp协议列车网络的安全防护方法、装置及*** | |
CN106302450A (zh) | 一种基于ddos攻击中恶意地址的检测方法及装置 | |
CN109302421A (zh) | 应用***安全防护策略优化方法及装置 | |
CN114374569B (zh) | 一种报文的检测方法、装置、电子设备和存储介质 | |
CN112822223B (zh) | 一种dns隐蔽隧道事件自动化检测方法、装置和电子设备 | |
CN110365673B (zh) | 一种隔离网络攻击面的方法、服务器和*** | |
CN113347184A (zh) | 网络流量安全检测引擎的测试方法、装置、设备及介质 | |
CN113098852A (zh) | 一种日志处理方法及装置 | |
CN109190408B (zh) | 一种数据信息的安全处理方法及*** | |
CN115664833B (zh) | 基于局域网安全设备的网络劫持检测方法 | |
KR101022167B1 (ko) | 네트워크 자산의 취약성을 고려한 침입탐지시스템의로그최적화 장치 | |
CN114301796B (zh) | 预测态势感知的验证方法、装置及*** | |
CN113037779B (zh) | 一种积极防御***中的智能自学习白名单方法和*** | |
CN113328976B (zh) | 一种安全威胁事件识别方法、装置及设备 | |
CN114050917A (zh) | 音频数据的处理方法、装置、终端、服务器及存储介质 | |
CN112769847A (zh) | 物联网设备的安全防护方法、装置、设备及存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB03 | Change of inventor or designer information | ||
CB03 | Change of inventor or designer information |
Inventor after: Hou Tianqi Inventor after: Liang Yu Inventor after: Tian Ye Inventor after: Fu Qiang Inventor after: Wang Jie Inventor after: Yang Manzhi Inventor after: Cai Lin Inventor after: Jin Hong Inventor after: Chen Xiaoguang Inventor before: Waiting for tianqi Inventor before: Liang Yu Inventor before: Tian Ye Inventor before: Fu Qiang Inventor before: Wang Jie Inventor before: Yang Manzhi Inventor before: Cai Lin Inventor before: Jin Hong Inventor before: Chen Xiaoguang |
|
GR01 | Patent grant | ||
GR01 | Patent grant |