Attack event analysis method and device, equipment and storage medium
The embodiment of the invention discloses an attack event analysis method and device, equipment and a storage medium. The method comprises the steps of obtaining event information of at least one attack event; associating the attack events by applying associated event screening conditions correspond...
Gespeichert in:
| Hauptverfasser: | , , , , , |
|---|---|
| Format: | Patent |
| Sprache: | chi ; eng |
| Schlagworte: | |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| Zusammenfassung: | The embodiment of the invention discloses an attack event analysis method and device, equipment and a storage medium. The method comprises the steps of obtaining event information of at least one attack event; associating the attack events by applying associated event screening conditions corresponding to event types in respective event information of the at least one attack event, and determining at least one associated event group; for each associated event group, executing the following operations to determine an attack parameter set in each associated event group: determining a first attack scene of a first associated event group; the first associated event group is any associated event group in the at least one associated event group; the merging condition corresponding to the first attack scene is applied to merge the at least two attack events in the first association event group to obtain the merged attack parameter set, and the merged attack parameter set is used as the attack information to analyze |
|---|