336 lines
8.3 KiB
Markdown
336 lines
8.3 KiB
Markdown
# 国内常见APP特征提取-202305
|
||
|
||
| ID | Creation Date | Assignee | Status |
|
||
|----|----------------|----------|--------|
|
||
| OMPUB-912 | 2023-05-06T16:51:40.000+0800 | 牛翔 | 完成 |
|
||
|
||
|
||
---
|
||
|
||
有些国内常见应用TSG的APP Sketch DB并不支持识别,需要提取特征,创建对应的APP,测试通过后更新到APP Sketch DB中成为内置APP。APP Sketch DB目前不支持识别的APP:
|
||
* vivo
|
||
* 金山云
|
||
* 优选云
|
||
* 腾讯云
|
||
|
||
有些国内常见应用TSG的APP Sketch DB支持识别,但是会出现识别不全的情况。同样需要提取特征,内置APP引用自定义特征。测试通过后更新到APP Sketch DB中成为内置APP。PP Sketch DB支持识别,但是需要补充特征的APP:
|
||
* 快手(app name::kuaishou)
|
||
* 抖音(app name:douyin)
|
||
* 奇虎(app name: 360_safeguard--、360cn--)
|
||
* 芒果互联网电视(app name:mango_tv)
|
||
* 京东(app name:jingdong)**zhengchao** commented on *2023-05-06T19:35:14.080+0800*:
|
||
|
||
特征提取后:
|
||
1、[~zhaokun]安排测试组对APP特征进行测试;
|
||
2、测试通过后,请[~zhangwei]将对应APP特征更新到APP Sketch DB中
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-11T10:16:33.001+0800*:
|
||
|
||
[~zhaokun] ,已经更新了快手和抖音的特征,可以进行测试了
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-05-12T16:17:30.658+0800*:
|
||
|
||
* 抖音:
|
||
*
|
||
** 测试结果:未阻断。
|
||
** 详细说明:
|
||
*** 首页刷新视频,穿过2次。
|
||
*** 搜索后,“全网”页面无阻断效果。
|
||
*** 常用App未发现有误封的情况。
|
||
* 快手:
|
||
*
|
||
** 测试结果:未阻断。
|
||
** 详细说明:
|
||
*** 私信页面发送消息无阻断效果。
|
||
*** 常用App未发现有误封的情况。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-12T17:33:24.751+0800*:
|
||
|
||
[~zhaokun] 公司做过DNS的优化,网络设置中自动获取的DNS服务器为公司的服务器,测试过程中会出现部分请求不过系统,麻烦手动配置公共DNS再进行测试
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-05-12T17:56:31.986+0800*:
|
||
|
||
上述结果是在配置静态DNS:8.8.8.8下测试的,正在抓取数据包。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-12T17:56:54.426+0800*:
|
||
|
||
[~zhaokun] ,已经更新了芒果TV的特征,可以进行测试了
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-05-15T15:49:05.048+0800*:
|
||
|
||
* 芒果:
|
||
*
|
||
** 测试结果:在Windows、IOS、Android三个操作系统中,均阻断成功。
|
||
** 测试内容:
|
||
*** 反复打开、操作、关闭10次以上,均可以阻断成功。
|
||
*** 打开APP后再下发策略,可以阻断成功。
|
||
*** 常用APP未发现有误封的情况。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-16T17:45:51.483+0800*:
|
||
|
||
[~zhaokun] ,已经更新vivo的特征,目前选取APP为vivo商店。还有一个情况需要说明下,我们在分析穿透的数据的时候发现,使用wireshark、tcpdump打开数据包会出现报错,我试了下应该是使用tcpdump停止抓包的时候没有kill掉相应进程,这样会导致用数据包无法正常打开,麻烦注意一下,谢谢。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-16T17:46:02.078+0800*:
|
||
|
||
!image-2023-05-16-17-46-00-918.png!
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-16T17:56:55.431+0800*:
|
||
|
||
[~zhaokun] 应更新抖音特征
|
||
|
||
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-05-17T14:18:24.453+0800*:
|
||
|
||
* vivo:
|
||
** 测试结果:在Android上验证特征,部分操作未阻断。
|
||
** 详细说明:
|
||
*** 阻断失败操作:管理--全部服务--福利中心/积分商城/下载有礼/游戏预约/借钱/游戏大会员/会员中心/帮助反馈。
|
||
*** 常用App未发现有误封的情况。
|
||
* 抖音(5.16号提供的新特征):
|
||
** 测试结果:在Android和IOS上验证特征,部分操作未阻断。
|
||
** 测试内容:
|
||
*** 阻断失败操作:我--右上角菜单--抖音公益/我的客服、我--右上角菜单--更多功能--免流量/视频彩铃/广告合作、我--右上角菜单--我的钱包--放心借/抖音月付/我的保障。
|
||
*** 常用App未发现有误封的情况。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-18T18:24:43.901+0800*:
|
||
|
||
[~zhaokun] 今日更新快手、抖音特征
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-19T13:59:13.975+0800*:
|
||
|
||
[~zhaokun] 抖音特征以douyin_202305190213001为准
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-05-19T14:01:13.514+0800*:
|
||
|
||
* 抖音(202305190213001):
|
||
*
|
||
** 测试结果:在Windows、IOS、Android三个操作系统中,均阻断成功。
|
||
** 测试内容:
|
||
*** 反复打开、操作、关闭10次以上,均可以阻断成功。
|
||
*** 打开APP后再下发策略,可以阻断成功。
|
||
*** 常用APP未发现有误封的情况。
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-23T16:31:48.771+0800*:
|
||
|
||
目前进度
|
||
||ID||APP||APPname||包名||特征提取情况||工程部测试结果||测试组结果||备注||
|
||
|1|vivo|vivo|-|-|-|-|暂不提取特征|
|
||
|2|金山云|ksyun|-|已完成|通过|通过|未找到金山云的APP,暂不提取特征|
|
||
|3|优选云|cdncool|-|-|-|-|未找到优选云的APP,暂不提取特征|
|
||
|4|腾讯云|tencent_cloud|-|-|通过|-|未找到腾讯云的APP,暂不提取特征|
|
||
|5|快手|kuaishou|com.smile.gifmaker| |通过|未通过|出现特征匹配问题,已经提交BUG
|
||
https://jira.geedge.net/browse/OMPUB-938|
|
||
|6|抖音|douyin|com.ss.android.ugc.aweme|已完成|通过|通过| |
|
||
|7|奇虎|360_safeguard| | | | |对应为360安全卫士,正在提取特征|
|
||
|8|奇虎|360cn| | | | |对应为360官网|
|
||
|9|芒果互联网电视|mango_tv|com.hunantv.imgo.activity|已完成|通过|通过| |
|
||
|19|京东|jingdong|com.jingdong.app.mall| |通过| |分析特征时发现SNI为IPv6地址,但在系统FQDN中无法配置,以及提交BUG [https://jira.geedge.net/projects/OMPUB/issues/OMPUB-932?filter=allopenissues]|
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-24T09:34:47.541+0800*:
|
||
|
||
[~zhaokun] 已更新腾讯云特征,特征主要依靠ssl.sni进行阻断,可以导入tencent_cloud_fqdn_20230524013104.txt到FQDN,配置应用的时候选择ssl.handshake.extensions_server_name
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-24T10:23:23.443+0800*:
|
||
|
||
[~zhaokun] 已更新金山云特征,特征主要依靠ssl.sni进行阻断,可以导入ksyun_fqdn_20230524022218_2.txt到FQDN,配置应用的时候选择ssl.handshake.extensions_server_name
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-05-25T11:31:11.748+0800*:
|
||
|
||
[~zhaokun] 已经更新京东特征,特征文件jingdong_20230525_v1.0.json
|
||
|
||
|
||
|
||
---
|
||
|
||
**liuyang** commented on *2023-05-29T11:24:31.006+0800*:
|
||
|
||
对于vivo,金山云,优选云,腾讯云没有具体对应APP,不提取特征。[~niuxiang] [~lizhao]
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-06-02T09:06:45.621+0800*:
|
||
|
||
[~zhaokun] 今日更新京东特征,jingdong_20230601.json ,已经在44.72环境导入,app名称jingdong 20230525 v2
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-06-02T09:51:37.400+0800*:
|
||
|
||
[~zhaokun] 今日更新360cn特征,360cn_202306020150012.json ,已经在44.72环境导入,app名称360cn_20230602,360cn介绍Chinese web portal featuring a search engine and security-oriented software services.
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-06-02T15:19:03.241+0800*:
|
||
|
||
[~zhaokun] 今日更新360safeguard特征,360safeguard_20230602.json,已经在44.72环境导入,app名称360safeguard_20230602,360safeguard应用为360安全卫士,支持android、window、ios等
|
||
|
||
|
||
|
||
---
|
||
|
||
**zhaokun** commented on *2023-06-19T16:25:53.469+0800*:
|
||
|
||
测试结果详见:https://docs.geedge.net/pages/viewpage.action?pageId=48042017的“国内常见APP特征提取-202305”
|
||
|
||
|
||
|
||
---
|
||
|
||
**niuxiang** commented on *2023-11-03T17:20:58.587+0800*:
|
||
|
||
[~liuyang] [~zhaokun]
|
||
|
||
上述APP特征已更新,见附件:应用特征验证20231103_v2.zip
|
||
|
||
|
||
|
||
---
|
||
|
||
|
||
|
||
## Attachments
|
||
|
||
**38850/360cn_202306020150012.json**
|
||
|
||
---
|
||
|
||
**38875/360safeguard_20230602.json**
|
||
|
||
---
|
||
|
||
**38196/douyin_20230516.json**
|
||
|
||
---
|
||
|
||
**38477/douyin_202305190213001.json**
|
||
|
||
---
|
||
|
||
**38191/image-2023-05-16-17-46-00-918.png**
|
||
|
||
---
|
||
|
||
**38674/jingdong_20230525_v1.0.json**
|
||
|
||
---
|
||
|
||
**38848/jingdong_20230601.json**
|
||
|
||
---
|
||
|
||
**38634/ksyun_fqdn_20230524022218_2.txt**
|
||
|
||
---
|
||
|
||
**38593/tencent_cloud_fqdn_20230524013104.txt**
|
||
|
||
---
|
||
|
||
**38193/vivo_appstore_20230516.json**
|
||
|
||
---
|
||
|
||
**38741/vivo_sni_20230526.txt**
|
||
|
||
---
|
||
|
||
**37739/抖音_20230510.json**
|
||
|
||
---
|
||
|
||
**38428/抖音_20230518更新特征.json**
|
||
|
||
---
|
||
|
||
**37740/快手_20230510.json**
|
||
|
||
---
|
||
|
||
**38427/快手_20230518更新特征.json**
|
||
|
||
---
|
||
|
||
**37907/芒果tv_20230512.json**
|
||
|
||
---
|
||
|
||
**46675/应用特征验证20231103_v2.zip**
|
||
|
||
---
|
||
|