Script security detection method and device
The embodiment of the invention provides a script security detection method and device, and relates to the technical field of security detection.The method comprises the steps that a target program set is injected into a current application program domain of a PowerShell process; determining whether...
Gespeichert in:
| Hauptverfasser: | , , , |
|---|---|
| Format: | Patent |
| Sprache: | chi ; eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| Zusammenfassung: | The embodiment of the invention provides a script security detection method and device, and relates to the technical field of security detection.The method comprises the steps that a target program set is injected into a current application program domain of a PowerShell process; determining whether a currently loaded current application program domain contains a subprogram set related to script execution or not through the target program set; when it is determined that the subprogram set is included, performing hooking operation on related methods executed by scripts in the subprogram set through the target program set to obtain target script content; and performing security detection on the target script content through the target program set. According to the method, the hooking operation is carried out on the related method executed by the script of the PowerShell process through the target program set, and the security detection is carried out on the target script content obtained by the hooking operatio |
|---|