Vulnerability association method and system of Web application, electronic equipment and storage medium

Vulnerability association method and system of Web application, electronic equipment and storage medium

The invention relates to a vulnerability association method and system of a Web application, electronic equipment and a storage medium. The vulnerability association method of the Web application specifically comprises the following steps: adding a Hook JS into an HTML file; the Hook JS extracts DOM...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: WANG JIANFENG, FAN BINGHUA, XIONG KUI, JEONG JI-YOUNG, XU FENG
Format: Patent
Sprache:chi ; eng
Schlagworte:
ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page
container_issue
container_start_page
container_title
container_volume
creator WANG JIANFENG
FAN BINGHUA
XIONG KUI
JEONG JI-YOUNG
XU FENG
description The invention relates to a vulnerability association method and system of a Web application, electronic equipment and a storage medium. The vulnerability association method of the Web application specifically comprises the following steps: adding a Hook JS into an HTML file; the Hook JS extracts DOM information from the HTML file according to the user instruction, wherein the DOM information comprises instruction coordinates; performing page rendering based on a user instruction, when the security monitoring tool monitors vulnerability information, rendering the DOM information to generate a page file, and marking the page file based on instruction coordinates; and associating the page file with the vulnerability information. According to the method, the front-end JS Hook and DOM operation technologies are utilized to realize front-end and back-end association, so that the corresponding relationship between the specific URL for triggering the vulnerability and the browser page is clear at a glance, research p
format Patent
fullrecord <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_CN118631583A</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>CN118631583A</sourcerecordid><originalsourceid>FETCH-epo_espacenet_CN118631583A3</originalsourceid><addsrcrecordid>eNqNjL0OgkAQBmksjPoOa68FIRpaQzRWVkZLshwfuMn9yS0Fb69RH8BqmpmZZ_1ttB4DN2JFJ-KUghFWCZ4c9BFaYt9SmpLCUejojoY4RivmI20IFkaH4MUQnqNEB6_fRsPAPd6bVka3zGYd24TVj4tsfTpeq_MWMdRIkQ08tK4ueV7ui3xXFofiH-cFGp1Akg</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>Vulnerability association method and system of Web application, electronic equipment and storage medium</title><source>esp@cenet</source><creator>WANG JIANFENG ; FAN BINGHUA ; XIONG KUI ; JEONG JI-YOUNG ; XU FENG</creator><creatorcontrib>WANG JIANFENG ; FAN BINGHUA ; XIONG KUI ; JEONG JI-YOUNG ; XU FENG</creatorcontrib><description>The invention relates to a vulnerability association method and system of a Web application, electronic equipment and a storage medium. The vulnerability association method of the Web application specifically comprises the following steps: adding a Hook JS into an HTML file; the Hook JS extracts DOM information from the HTML file according to the user instruction, wherein the DOM information comprises instruction coordinates; performing page rendering based on a user instruction, when the security monitoring tool monitors vulnerability information, rendering the DOM information to generate a page file, and marking the page file based on instruction coordinates; and associating the page file with the vulnerability information. According to the method, the front-end JS Hook and DOM operation technologies are utilized to realize front-end and back-end association, so that the corresponding relationship between the specific URL for triggering the vulnerability and the browser page is clear at a glance, research p</description><language>chi ; eng</language><subject>ELECTRIC COMMUNICATION TECHNIQUE ; ELECTRICITY ; TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><creationdate>2024</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20240910&amp;DB=EPODOC&amp;CC=CN&amp;NR=118631583A$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25564,76547</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&amp;date=20240910&amp;DB=EPODOC&amp;CC=CN&amp;NR=118631583A$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>WANG JIANFENG</creatorcontrib><creatorcontrib>FAN BINGHUA</creatorcontrib><creatorcontrib>XIONG KUI</creatorcontrib><creatorcontrib>JEONG JI-YOUNG</creatorcontrib><creatorcontrib>XU FENG</creatorcontrib><title>Vulnerability association method and system of Web application, electronic equipment and storage medium</title><description>The invention relates to a vulnerability association method and system of a Web application, electronic equipment and a storage medium. The vulnerability association method of the Web application specifically comprises the following steps: adding a Hook JS into an HTML file; the Hook JS extracts DOM information from the HTML file according to the user instruction, wherein the DOM information comprises instruction coordinates; performing page rendering based on a user instruction, when the security monitoring tool monitors vulnerability information, rendering the DOM information to generate a page file, and marking the page file based on instruction coordinates; and associating the page file with the vulnerability information. According to the method, the front-end JS Hook and DOM operation technologies are utilized to realize front-end and back-end association, so that the corresponding relationship between the specific URL for triggering the vulnerability and the browser page is clear at a glance, research p</description><subject>ELECTRIC COMMUNICATION TECHNIQUE</subject><subject>ELECTRICITY</subject><subject>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</subject><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2024</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNqNjL0OgkAQBmksjPoOa68FIRpaQzRWVkZLshwfuMn9yS0Fb69RH8BqmpmZZ_1ttB4DN2JFJ-KUghFWCZ4c9BFaYt9SmpLCUejojoY4RivmI20IFkaH4MUQnqNEB6_fRsPAPd6bVka3zGYd24TVj4tsfTpeq_MWMdRIkQ08tK4ueV7ui3xXFofiH-cFGp1Akg</recordid><startdate>20240910</startdate><enddate>20240910</enddate><creator>WANG JIANFENG</creator><creator>FAN BINGHUA</creator><creator>XIONG KUI</creator><creator>JEONG JI-YOUNG</creator><creator>XU FENG</creator><scope>EVB</scope></search><sort><creationdate>20240910</creationdate><title>Vulnerability association method and system of Web application, electronic equipment and storage medium</title><author>WANG JIANFENG ; FAN BINGHUA ; XIONG KUI ; JEONG JI-YOUNG ; XU FENG</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_CN118631583A3</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>chi ; eng</language><creationdate>2024</creationdate><topic>ELECTRIC COMMUNICATION TECHNIQUE</topic><topic>ELECTRICITY</topic><topic>TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION</topic><toplevel>online_resources</toplevel><creatorcontrib>WANG JIANFENG</creatorcontrib><creatorcontrib>FAN BINGHUA</creatorcontrib><creatorcontrib>XIONG KUI</creatorcontrib><creatorcontrib>JEONG JI-YOUNG</creatorcontrib><creatorcontrib>XU FENG</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>WANG JIANFENG</au><au>FAN BINGHUA</au><au>XIONG KUI</au><au>JEONG JI-YOUNG</au><au>XU FENG</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>Vulnerability association method and system of Web application, electronic equipment and storage medium</title><date>2024-09-10</date><risdate>2024</risdate><abstract>The invention relates to a vulnerability association method and system of a Web application, electronic equipment and a storage medium. The vulnerability association method of the Web application specifically comprises the following steps: adding a Hook JS into an HTML file; the Hook JS extracts DOM information from the HTML file according to the user instruction, wherein the DOM information comprises instruction coordinates; performing page rendering based on a user instruction, when the security monitoring tool monitors vulnerability information, rendering the DOM information to generate a page file, and marking the page file based on instruction coordinates; and associating the page file with the vulnerability information. According to the method, the front-end JS Hook and DOM operation technologies are utilized to realize front-end and back-end association, so that the corresponding relationship between the specific URL for triggering the vulnerability and the browser page is clear at a glance, research p</abstract><oa>free_for_read</oa></addata></record>
fulltext fulltext_linktorsrc
identifier
ispartof
issn
language chi ; eng
recordid cdi_epo_espacenet_CN118631583A
source esp@cenet
subjects ELECTRIC COMMUNICATION TECHNIQUE
ELECTRICITY
TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHICCOMMUNICATION
title Vulnerability association method and system of Web application, electronic equipment and storage medium
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-03T19%3A12%3A34IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=WANG%20JIANFENG&rft.date=2024-09-10&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3ECN118631583A%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true