Monitoring method for sensing remote control of hacker on computer in real time based on DNS (Domain Name Server) analysis

The invention provides a monitoring method for sensing that a computer is remotely controlled by a hacker in real time based on DNS analysis, and the method comprises the steps: obtaining a high-frequency command of an operating system, and building a DNS analysis server, the high-frequency command...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: PEI ZHIHONG, YAN XINGZHI
Format: Patent
Sprache:chi ; eng
Schlagworte:
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:The invention provides a monitoring method for sensing that a computer is remotely controlled by a hacker in real time based on DNS analysis, and the method comprises the steps: obtaining a high-frequency command of an operating system, and building a DNS analysis server, the high-frequency command being an operating system native command executed at high frequency after the hacker remotely controls the computer; a hidden pile is inserted into the high-frequency command, and when the high-frequency command with the inserted hidden pile is executed, a DNS analysis request is sent to a DNS analysis server; responding to the analysis request through a DNS analysis server, and generating a DNS analysis log; and sending the DNS analysis log to a visual log server in real time, and displaying the DNS analysis log through the visual log server. According to the method, through batch deployment of the scripts, low-cost and large-scale deployment can be realized in a short time, and remote control behaviors of hackers