Patent · US Active

Apparatus and method for detecting malicious sites

US8745740B2 · kind B2 · utility

1Cited by

1References

9Claims

0Family size

Assignee

AHNLAB, INC. · KR

Inventors

Ju Hyun Oh · Anyang-si, KR
Chang Woo Lee · Seojong-myeon, KR
Chong Phil Park · Seoul, KR

Key dates

Filing date	Nov 1, 2010
Grant date	Jun 3, 2014
Priority date	—
Expiry date	Nov 30, 2030

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/1441
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

The invention relates to an apparatus for detecting malicious sites, comprising: a monitoring unit for monitoring all processes being executed in a computing apparatus; a hook code insertion unit for inserting a hook code in a process executed in a browser when the execution of the browser is detected by the monitoring unit; a danger level determining unit that, upon the detection of a website movement, uses the hook code to inspect a stack structure of a process implemented according to the website movement and determine whether or not to perform the stack structure inspection, and determines whether or not the website to which the movement has been made is a malicious site; and a database for storing a list of sites determined to be malicious.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.