Vulnerability testing method and system in login scene

• Main Authors: FAN XINYU, LYU BOLIANG
• Format: Patent
• Language: Chinese; English
• Published: 13.11.2020
• Subjects: CALCULATING; COMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS; COMPUTING; COUNTING; ELECTRIC DIGITAL DATA PROCESSING; PHYSICS

The invention provides a vulnerability test method and system in a login scene, which can be applied to the technical field of information safety, and comprises the following steps: firstly, forwarding a login scene request message and a verification code request message to a target server to obtain a first response message and a corresponding verification file comprising a login verification code; analyzing the verification file, reconstructing to obtain a reconstruction request message, and sending the reconstruction request message to a target server to obtain a corresponding second response message; and finally, comparing the first response message with the second response message, and if the comparison is not passed, determining that the replay vulnerability test of the test terminalis passed. It can be seen that the login scene message is recognized from the message library. Meanwhile, different kinds of verification code mechanisms can be recognized, the verification codes (included in the verification