Web-based active and automatic trapping honeypot implementation method

Web-based active and automatic trapping honeypot implementation method

The invention discloses a web-based active and automatic trapping honeypot implementation method, which comprises the following steps of S100, identifying and extracting hostile attack behaviors through a reverse proxy intelligent engine, and attacking behavior information and fingerprint informatio...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: ZHANG DAKANG, ZHANG QIANKUN, YANG JIE
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention discloses a web-based active and automatic trapping honeypot implementation method, which comprises the following steps of S100, identifying and extracting hostile attack behaviors through a reverse proxy intelligent engine, and attacking behavior information and fingerprint information of the hostile attack behaviors at the same time; S200, extracting data of the hostile attack behavior, and redirecting the hostile attack behavior into a trapping honeypot system; and S300, monitoring the hostile attack behavior in the honeypot, and automatically and quickly establishing a corresponding honeypot system according to the attack means and method of the hostile attack behavior. According to the web-based implementation method for actively and automatically trapping the honeypot, malicious attack behaviors are extracted through an AI intelligent algorithm, IP addresses, flow, device fingerprints and attack fingerprint information of malicious attackers are extracted, the malicious attack behaviors ar