首页> 外国专利> Exploit nonspecific host intrusion prevention/detection methods and systems and smart filters therefor

Exploit nonspecific host intrusion prevention/detection methods and systems and smart filters therefor

机译：利用非特定主机入侵防御/检测方法，系统及其智能过滤器

页面导航

摘要
著录项
相似文献

摘要

Exploit nonspecific host intrusion prevention/detection methods, systems and smart filters are described. Portion of network traffic is captured and searched for a network traffic pattern, comprising: searching for a branch instruction transferring control to a first address in the memory; provided the first instruction is found, searching for a subroutine call instruction within a first predetermined interval in the memory starting from the first address and pointing to a second address in the memory; provided the second instruction is found, searching for a third instruction at a third address in the memory, located at a second predetermined interval from the second address; provided the third instruction is a fetch instruction, indicating the presence of the exploit;;provided the third instruction is a branch instruction, transferring control to a fourth address in the memory, and provided a fetch instruction is located at the fourth address, indicating the presence of the exploit.

机译：描述了利用非特定主机入侵预防/检测方法，系统和智能过滤器。捕获网络流量的一部分并搜索网络流量模式，包括：搜索将控制转移到存储器中的第一地址的分支指令;如果找到第一条指令，则从第一地址开始指向存储器中的第二地址，在存储器的第一预定间隔内搜索子程序调用指令;假设找到第二指令，则在与第二地址相距第二预定间隔的存储器中的第三地址处搜索第三指令;假设第三条指令是一条获取指令，表明存在漏洞利用;;如果第三条指令是分支指令，则将控制权转移到内存中的第四地址，并且提供一条获取指令位于第四地址，表明漏洞的存在。

著录项

公开/公告号US9038161B2

专利类型
公开/公告日2015-05-19

原文格式PDF
申请/专利权人 TREND MICRO INCORPORATED;
展开▼

申请/专利号US201213710326
发明设计人 WEI HU;VINAY KARECHA;
展开▼

申请日2012-12-10
分类号G06F11/30;G06F12/06;G06F21/55;H04L29/06;
国家 US
入库时间 2022-08-21 15:20:05

相似文献

专利
外文文献
中文文献