Shulou(Shulou.com)06/01 Report--

The so-called traffic hijacking is to snatch other people's traffic and become their own. This is the middleman's income. Traffic is generally the number of people who get the traffic from the website. It can also be said to be website hijacking.

So how to detect the problem of website hijacking?

IIS7 website monitoring

Test whether the website is hijacked, DNS pollution detection and other information.

How to solve the problem of traffic hijacking?

First, add a listener to the page, send it back whenever you insert dom, then capture all our own rules for inserting dom, and then add all these dom features to the exception. Delete all other dom inserts. As a result, these hijacked ads are deleted as soon as they are inserted.

There is another way to do it.

Do not need DOM, use C language and Emscripten framework, WebAssembly to write programs, use full-screen canvas to do a set of interface or even a set of window manager (I don't know Emscripten back-end such as qt is not available now), make an OpenSSL and so on, through WebSocket self-programming protocols and server-side communications, make a back-end or even desktop front-end.

So as long as you make sure that WebAssembly's loader and those lines of HTML are not tampered with.

If you just want to monitor processing, simply generate the whole DOM dynamically, monitor the establishment of all DOM elements at any time, determine all your own scripts without .js extension but only use Content-Type, and use WebAssembly to prevent hijacking key logic. Once external scripts, or elements, are inserted into the DOM, log is directly sent to the server.

Of course, the current traffic hijacking can be solved by full-link, end-to-end HTTPS (not only station-to-user, but also CDN-to-origin links).

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.