摘要
网页被植入暗链是企事业网站、教育类网站上常见的攻击行为,攻击手法变化多样,往往不容易被轻易检测出来。笔者遇到了一种非常规的暗链,它并没有在网页中直接植入隐蔽的链接代码,并且该暗链无法在电脑端访问,只能在手机端打开。通过分析攻击路径、木马特点、IIS日志、暗链来源等一系列的排查和探索,终于找到了暗链实现挂网的操作流程并对其进行了清除。
Implanting hidden hyperlinks into web pages is a common attack on enterprise and public institution websites and educational websites,and attack methods vary and are often not easily detected.The author encoun-tered an unconventional hidden hyperlink that did not directly implant hidden link codes into the web page,and it could not be accessed on the computer and could only be opened on the mobile phone.After a series of investiga-tions and exploration such as analyzing attack paths,the characteristics of trojan virus,IIS logs and the source of the hidden hyperlink,the author finally found how the hidden hyperlink was implanted and cleared it.
作者
邓卫红
刘伟跃
DENG Weihong;LIU Weiyue(Zhangjiajie Institute of Aeronautical Engineering,Zhangjiajie,Hunan Province,427000 China)
出处
《科技资讯》
2024年第11期55-58,共4页
Science & Technology Information
基金
湖南省自然科学基金“基于区块链技术的学生电子简历管理系统技术研究”(项目编号:2021JJ60079)。
关键词
暗链
攻击路径
木马检测
服务器
Hidden hyperlink
Attack
Hidden
Unconventional
Clear
