Research And Application Of Security Detection Technology Based On WEB Fingerprint Identification

In the 21 st century,the Internet has become an indispensable part of people's lives and work.While bringing convenience to people,the security problems they face are becoming more and more prominent.Many attackers use various security cracking methods to invade Web sites,resulting in serious consequences such as service interruption,malicious tampering of website content and leakage of customer information,which greatly affects the stability of society.However,the traditional Web security detection technology has the problem of low recognition efficiency,so the solution to the security problem of Web sites is imminent.In this paper,the traditional Web security detection technology is low in recognition efficiency.The Web fingerprint recognition algorithm is improved by integrating K-means and GBDT,and the Docker virtualization technology and POC framework are combined to simplify the verification process of Web vulnerability.A Web security detection technology with high recognition accuracy and low recognition time.Firstly,the Web site is crawled and parsed by Scrapy crawler technology and BeautifulSoup parsing technology,and Web fingerprinting technology and Docker virtualization technology are briefly introduced.Secondly,the captured Web fingerprint text is vectorized and preprocessed.The K-means clustering experiment of Euclidean distance,valley distance and cosine distance is used to select the cosine measure as the similarity measure function of the improved K-means algorithm.After obtaining the type of Web service component,the recognition result and other Web fingerprints are input into GBDT.The model finally gets the specific version of the Web service component.Thirdly,after matching the type and version of the Web service component in the vulnerability library,deploy the potential vulnerability in the Docker environment and call its corresponding POC verification framework to reproduce it.Vulnerability.Finally,a Web security detection platform that can implement Web vulnerability identification and Web vulnerability verification is built.Based on Web fingerprinting technology and Docker virtualization technology,this paper studies and improves the Web fingerprinting algorithm and Web vulnerability verification framework.Experiments show that the platform built on the above theory can accurately and quickly identify the potential vulnerabilities of Web sites,and improve the recognition accuracy of Web vulnerabilities,reducing the time of Web vulnerability identification and the technical threshold of Web vulnerability verification.