Webpage integrity monitoring
Abstract
A method to monitor integrity of webpages. The method may include obtaining a destination of outgoing network traffic resulting from rendered code of a webpage. The rendered code may be generated using source code of the webpage that is obtained in response to a request to a webserver that hosts the webpage. The method may also include obtaining a previous destination of previous outgoing network traffic resulting from previous rendered code of the webpage. The previous rendered code may be generated before the request is sent to the webserver for the source code used to generate the rendered code. The method may also include comparing the destination and the previous destination to determine a change in integrity of security of the webpage. In response to the change in the integrity of security of the webpage, an alert regarding the integrity of security of the webpage may be generated.
Claims
exact text as granted — not AI-modified1 . A method to monitor integrity of webpages, the method comprising:
obtaining, at a computing system, a final network destination of outgoing network traffic resulting from rendered code of a webpage, the rendered code generated using source code of the webpage that is obtained in response to a request to a webserver that hosts the webpage and using remotely called code referenced in the source code, wherein the rendered code is finalized instructions to layout presentation of the webpage and the rendered code includes elements not represented in the remotely called code and the source code without parsing and/or executing the remotely called code and the source code; obtaining, at the computing system, one or more network destinations previously obtained; comparing, at the computing system, the final network destination and the one or more network destinations to determine a change in integrity of security of the webpage; and in response to the change in the integrity of security of the webpage, generating an alert regarding the integrity of security of the webpage.
2 . The method of claim 1 , wherein obtaining the final network destination of the outgoing network traffic further comprises:
capturing the outgoing network traffic resulting from the rendered code of the webpage; and parsing the outgoing network traffic to determine the final network destination.
3 . The method of claim 2 , wherein the outgoing network traffic is captured by a proxy computing system separate from the computing system.
4 . The method of claim 1 , wherein obtaining the one or more network destinations comprises:
capturing previous outgoing network traffic resulting from previous rendered code of the webpage, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code; and parsing the previous outgoing network traffic to determine the one or more network destinations.
5 . The method of claim 1 , wherein obtaining the one or more network destinations comprises analyzing previous rendered code of the webpage to determine the one or more network destinations, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code.
6 . The method of claim 1 , wherein a device separate from the computing system generates the rendered code.
7 . The method of claim 1 , wherein the final network destination includes a plurality of final network destinations and the one or more network destinations includes a plurality of network destinations and the plurality of final network destinations are different from the plurality of network destinations based on the plurality of final network destinations including more final network destinations than the plurality of network destinations.
8 . The method of claim 1 , wherein the outgoing network traffic includes network protocol posts.
9 . A system comprising:
at least one non-transitory computer-readable media configured to store one or more instructions; and at least one processor coupled to the at least one non-transitory computer-readable media, the at least one processor configured to execute the instructions to cause or direct the system to perform operations, the operations comprising:
obtain, at a computing system, a final network destination of outgoing network traffic resulting from rendered code of a webpage, the rendered code generated using source code of the webpage that is obtained in response to a request to a webserver that hosts the webpage and using remotely called code referenced in the source code, wherein the rendered code is finalized instructions to layout presentation of the webpage and the rendered code includes elements not represented in the remotely called code and the source code without parsing and/or executing the remotely called code and the source code;
obtain, at the computing system, one or more network destinations previously obtained;
compare, at the computing system, the final network destination and the one or more network destinations to determine a change in integrity of security of the webpage; and
in response to the change in the integrity of security of the webpage, generate an alert regarding the integrity of security of the webpage.
10 . The system of claim 9 , wherein obtaining the final network destination of the outgoing network traffic further includes operations including:
capturing the outgoing network traffic resulting from the rendered code of the webpage; and parse the outgoing network traffic to determine the final network destination.
11 . The system of claim 10 , wherein the outgoing network traffic is captured by a proxy computing system separate from the system.
12 . The system of claim 9 , wherein obtaining the one or more network destinations comprises operations including:
capture previous outgoing network traffic resulting from previous rendered code of the webpage, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code; and parse the previous outgoing network traffic to determine the one or more network destinations.
13 . The system of claim 9 , wherein obtaining the one or more network destinations comprises analyzing previous rendered code of the webpage to determine the one or more network destinations, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code.
14 . The system of claim 9 , wherein a device separate from the system generates the rendered code.
15 . The system of claim 9 , wherein the final network destination includes a plurality of final network destinations and the one or more network destinations includes a plurality of network destinations and the plurality of final network destinations are different from the plurality of network destinations based on the plurality of final network destinations including more final network destinations than the plurality of network destinations.
16 . The system of claim 9 , wherein the outgoing network traffic includes network protocol posts.
17 . One or more non-transitory computer-readable media configured to store one or more instructions that when executed cause or direct a system to perform operations, the operations comprising:
obtain, at a computing system, a final network destination of outgoing network traffic resulting from rendered code of a webpage, the rendered code generated using source code of the webpage that is obtained in response to a request to a webserver that hosts the webpage and using remotely called code referenced in the source code, wherein the rendered code is finalized instructions to layout presentation of the webpage and the rendered code includes elements not represented in the remotely called code and the source code without parsing and/or executing the remotely called code and the source code; obtain, at the computing system, one or more network destinations previously obtained; compare, at the computing system, the final network destination and the one or more network destinations to determine a change in integrity of security of the webpage; and in response to the change in the integrity of security of the webpage, generate an alert regarding the integrity of security of the webpage.
18 . The one or more non-transitory computer-readable media of claim 17 , wherein obtaining the one or more network destinations comprises:
capture previous outgoing network traffic resulting from previous rendered code of the webpage, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code; and parse the previous outgoing network traffic to determine the one or more network destinations.
19 . The one or more non-transitory computer-readable media of claim 17 , wherein obtaining the one or more network destinations comprises analyzing previous rendered code of the webpage to determine the one or more network destinations, the previous rendered code generated before the request is sent to the webserver for the source code used to generate the rendered code.
20 . The one or more non-transitory computer-readable media of claim 17 , wherein the final network destination includes a plurality of final network destinations and the one or more network destinations includes a plurality of network destinations and the plurality of final network destinations are different from the plurality of network destinations based on the plurality of final network destinations including more final network destinations than the plurality of network destinations.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.