网页木马检测系统的研究与设计
发布时间:2019-06-28 13:31
【摘要】:最近几十年,随着Internet的快速发展,人们的生活发生了巨大的改变,在充分的享受网络带给他们便利的同时,人们也正遭受着来自互联网的安全威胁,诸如恶意代码,网络钓鱼,僵尸网络等,而近年来互联网演变出来一种新的恶意代码网页木马让网络安全的前景更不明朗。伴随网页木马而来的都是一些木马病毒,僵尸网络,肉鸡等破坏性的行为,浏览网页已经成为人们感染网页木马的主要方式,因此有必要加强对网页木马的研究以及检测技术的探索,还互联网一个安全有序的环境。 针对这种现状,本文首先对网页木马的定义、网页木马的性质特点、网页木马的攻击方法和原理做了一个综述,并详细的分析了当前普遍使用的网页木马检测技术,找出这些技术中存在的不足;然后提出了一种基于机器学习的检测方法,通过对网页木马结构层次的分析筛选出若干种典型网马特征,并结合算法进行了实验验证;最后设计了一个网页木马检测系统,通过爬取互联网上公布的恶意URL的网页源代码,检测和收集网页木马,为网络安全研究提供支撑。 本文的主要研究工作如下: 1.研究了当前互联网安全现状,阐述了网页木马的严重危害性,并对网页木马做了一个综述,包括网页木马的定义、网页木马的性质和特点、网页木马的攻击方法和原理、网页木马的防御等。 2.介绍了当前正在使用的网页木马检测技术,并对现在比较流行的检测方法进行了详细的研究和分析,找出其中的缺陷,然后提出了一种基于机器学习的检测方法,通过对网页木马层次结构的分析,找出若干种典型的特征,并用实验证明这些特征的有效性。 3.设计了一个网页木马检测系统,首先明确系统设计的目的,然后对系统进行了需求分析、概要设计和详细设计,并使用Python语言完成了系统的实现。 4.对设计的系统进行了测试和验证,通过执行设计的测试用例完成了系统的功能测试和性能测试,并对比其它杀毒软件分析系统的检测效果。 经过测试验证得出设计的系统能够有效的检测出网页木马,较快速的收集高质量的恶意网页,为网络安全研究提供了有利的支撑。
[Abstract]:In recent decades, with the rapid development of Internet, great changes have taken place in people's lives. While fully enjoying the convenience brought to them by the Internet, people are also suffering from security threats from the Internet, such as malicious code, phishing, botnet and so on. In recent years, a new malicious code web Trojan horse has evolved from the Internet to make the prospect of network security even more uncertain. With the web Trojan horse is accompanied by some Trojan horse viruses, botnet, broiler and other destructive behavior, browsing the web has become the main way for people to infect the web Trojan horse, so it is necessary to strengthen the research and detection technology of the web Trojan horse, and return the Internet to a secure and orderly environment. In view of this situation, this paper first summarizes the definition of web Trojan horse, the nature and characteristics of web Trojan horse, the attack methods and principles of web Trojan horse, and analyzes the commonly used detection technology of web Trojan horse in detail, and finds out the shortcomings of these technologies. Then a detection method based on machine learning is proposed, and several typical net horse features are screened out through the analysis of the structure level of the web Trojan horse, and the experimental verification is carried out with the algorithm. Finally, a web Trojan horse detection system is designed to detect and collect the web Trojan horse by crawling the source code of the malicious URL published on the Internet, which provides support for the network security research. The main research work of this paper is as follows: 1. This paper studies the present situation of Internet security, expounds the serious harm of web Trojan horse, and makes a summary of web Trojan horse, including the definition of web Trojan horse, the nature and characteristics of web Trojan horse, the attack method and principle of web Trojan horse, the defense of web Trojan horse, etc. two銆,
本文编号:2507337
[Abstract]:In recent decades, with the rapid development of Internet, great changes have taken place in people's lives. While fully enjoying the convenience brought to them by the Internet, people are also suffering from security threats from the Internet, such as malicious code, phishing, botnet and so on. In recent years, a new malicious code web Trojan horse has evolved from the Internet to make the prospect of network security even more uncertain. With the web Trojan horse is accompanied by some Trojan horse viruses, botnet, broiler and other destructive behavior, browsing the web has become the main way for people to infect the web Trojan horse, so it is necessary to strengthen the research and detection technology of the web Trojan horse, and return the Internet to a secure and orderly environment. In view of this situation, this paper first summarizes the definition of web Trojan horse, the nature and characteristics of web Trojan horse, the attack methods and principles of web Trojan horse, and analyzes the commonly used detection technology of web Trojan horse in detail, and finds out the shortcomings of these technologies. Then a detection method based on machine learning is proposed, and several typical net horse features are screened out through the analysis of the structure level of the web Trojan horse, and the experimental verification is carried out with the algorithm. Finally, a web Trojan horse detection system is designed to detect and collect the web Trojan horse by crawling the source code of the malicious URL published on the Internet, which provides support for the network security research. The main research work of this paper is as follows: 1. This paper studies the present situation of Internet security, expounds the serious harm of web Trojan horse, and makes a summary of web Trojan horse, including the definition of web Trojan horse, the nature and characteristics of web Trojan horse, the attack method and principle of web Trojan horse, the defense of web Trojan horse, etc. two銆,
本文编号:2507337
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2507337.html
