Monitoring method for sensing remote control of hacker on computer in real time based on DNS (Domain Name Server) analysis
The invention provides a monitoring method for sensing that a computer is remotely controlled by a hacker in real time based on DNS analysis, and the method comprises the steps: obtaining a high-frequency command of an operating system, and building a DNS analysis server, the high-frequency command...
Gespeichert in:
Hauptverfasser: | , |
---|---|
Format: | Patent |
Sprache: | chi ; eng |
Schlagworte: | |
Online-Zugang: | Volltext bestellen |
Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
Zusammenfassung: | The invention provides a monitoring method for sensing that a computer is remotely controlled by a hacker in real time based on DNS analysis, and the method comprises the steps: obtaining a high-frequency command of an operating system, and building a DNS analysis server, the high-frequency command being an operating system native command executed at high frequency after the hacker remotely controls the computer; a hidden pile is inserted into the high-frequency command, and when the high-frequency command with the inserted hidden pile is executed, a DNS analysis request is sent to a DNS analysis server; responding to the analysis request through a DNS analysis server, and generating a DNS analysis log; and sending the DNS analysis log to a visual log server in real time, and displaying the DNS analysis log through the visual log server. According to the method, through batch deployment of the scripts, low-cost and large-scale deployment can be realized in a short time, and remote control behaviors of hackers |
---|