Network attack behavior detection method and device, electronic equipment and storage medium

The invention discloses a network attack behavior detection method. The detection method comprises the following steps: receiving network traffic and determining a current data packet according to a data packet arrangement sequence of the network traffic; judging whether the current data packet has a Webshell file uploading characteristic or not; if yes, determining a data packet corresponding to a Webshell file in the network flow, and executing a network attack behavior detection operation on the data packet corresponding to the Webshell file; and if not, allowing the current data packet to pass. According to the method, the detection efficiency of the network attack behavior can be improved, and the influence of network attack behavior detection on network flow transmission delay is reduced. The invention further discloses a network attack behavior detection device, a storage medium and electronic equipment, which have the above beneficial effects. 本申请公开了一种网络攻击行为的检测方法，所述检测方法包括接收网络流量并根据所述网络流量的数据包排列顺序确定当前数据包