| 基于DLL的特洛伊木马实时检测机制研究与实现 |
| |
| 引用本文: | 崔二强,马银华,杨金莹.基于DLL的特洛伊木马实时检测机制研究与实现[J].石家庄铁道学院学报(社会科学版),2009(1):47-50. |
| |
| 作者姓名: | 崔二强 马银华 杨金莹 |
| |
| 作者单位: | 石家庄铁道学院,计算机与信息工程分院,河北,石家庄,050043
? |
| |
| 摘 要: | 针对特洛伊DLL对系统造成的危害,本论通过分析动态链接库的PE文件结构.提出了一种实时检测TROY动态链接库的设计方案,并在VC环境下成功实现.基于该方法用户可以有效地、实时地检测出特洛伊DLL,减少特洛伊DLL对泄露用户信息所造成的危害.
|
| 关 键 词: | 特洛伊DLL 实时检测 |
| 收稿时间: | 2008/11/18 0:00:00 |
Research and Implementation on Real-Time Detection Mechanism of Troy Dynamic Link Library |
| |
| Authors: | Cui Erqiang Ma Yinhu Yang Jinying |
| |
| Abstract: | As for the destruction of Troy DLL to the system,the author analysis the structure of the PE file of DLL, presents a way of real time detect Troy DLL. And finally succeeds the realization under the VC environment.Based on this method,user can detect Troy DLL effectively and continuously ,and it can reduces the harm that Troy DLL reveal the user information. |
| |
| Keywords: | DLL PE |
|
| 点击此处可从《石家庄铁道学院学报(社会科学版)》浏览原始摘要信息 |
| 点击此处可从《石家庄铁道学院学报(社会科学版)》下载免费的PDF全文 |
|
