Mobile Internet Malware Monitoring System
The analysis module is implemented by the probe, which is responsible for packet capture, protocol analysis, data aggregation, virus scanning, result sorting and other functions. It is specifically divided into packet capture layer, protocol analysis layer, preprocessing layer, anti-virus engine layer, data layer, etc.
According to the instructions of the management platform, the disposal module completes the processing page push and malicious traffic blocking by matching the interception characteristics and traffic analysis results. It is divided into traffic analysis module, interception / redirection module and page push interface module.