{"title":"蜜罐仿真程序的嵌入式web应用分析","authors":"J. Farneth, A. Dhanju, J. J. Blum","doi":"10.1109/ISCE.2012.6241731","DOIUrl":null,"url":null,"abstract":"This paper describes a process for analyzing web server requests and responses for use in developing emulation programs for low interaction honeypot responses. In order to manage the complexity of this task, this approach first identifies that static and dynamic resources made available from a web server. Then, for each dynamic resource a fuzzing approach was used to generate and analyze the range of responses for a range of requests, including ones with the types of malformed input that can appear in computer security attacks.","PeriodicalId":6297,"journal":{"name":"2012 IEEE 16th International Symposium on Consumer Electronics","volume":"8 1","pages":"1-4"},"PeriodicalIF":0.0000,"publicationDate":"2012-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Analysis of embedded web applications for honeypot emulation programs\",\"authors\":\"J. Farneth, A. Dhanju, J. J. Blum\",\"doi\":\"10.1109/ISCE.2012.6241731\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper describes a process for analyzing web server requests and responses for use in developing emulation programs for low interaction honeypot responses. In order to manage the complexity of this task, this approach first identifies that static and dynamic resources made available from a web server. Then, for each dynamic resource a fuzzing approach was used to generate and analyze the range of responses for a range of requests, including ones with the types of malformed input that can appear in computer security attacks.\",\"PeriodicalId\":6297,\"journal\":{\"name\":\"2012 IEEE 16th International Symposium on Consumer Electronics\",\"volume\":\"8 1\",\"pages\":\"1-4\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-06-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 IEEE 16th International Symposium on Consumer Electronics\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISCE.2012.6241731\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 IEEE 16th International Symposium on Consumer Electronics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISCE.2012.6241731","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Analysis of embedded web applications for honeypot emulation programs
This paper describes a process for analyzing web server requests and responses for use in developing emulation programs for low interaction honeypot responses. In order to manage the complexity of this task, this approach first identifies that static and dynamic resources made available from a web server. Then, for each dynamic resource a fuzzing approach was used to generate and analyze the range of responses for a range of requests, including ones with the types of malformed input that can appear in computer security attacks.