Table 2 Summary of feature detection points
From: Web intrusion detection system combined with feature analysis and SVM optimization
Attack techniques | Feature detection points |
|---|---|
Case sensitive, keyword replacement | Detect sensitive characters |
Multiple URL encoding | Detecting the form of %25% |
Comment the bypass, empty byte bypass, special symbol bypass | Detect the specific character of characteristics |
Weak coding detection | Detect the hex encoding, char encoding, html entity encoding, unicode encoding |
Overflow | Detect packet length |