首页>
外国专利>
Detecting malicious code received from malicious client side injection vectors
Detecting malicious code received from malicious client side injection vectors
展开▼
机译:检测从恶意客户端注入向量收到的恶意代码
展开▼
页面导航
摘要
著录项
相似文献
摘要
There are disclosed devices, system and methods for detecting malicious scripts received from malicious client side vectors. First, a script received from a client side injection vector and being displayed to a user in a published webpage is detected. The script may have malicious code configured to cause a browser unwanted action without user action. The script is wrapped in a java script (JS) closure and/or stripped of hyper-text markup language (HTML). The script is then executed in a browser sandbox that is capable of activating the unwanted action, displaying execution of the script, and stopping execution of the unwanted action if a security error resulting from the unwanted action is detected. When a security error results from this execution in the sandbox, executing the malicious code is discontinued, displaying the malicious code is discontinued, and execution of the unwanted action is stopped.
展开▼