阅读说明：本技术 shellcode的检测方法及装置 (Detection method and device of shellcode ) 是由 徐贵斌 于 2019-08-15 设计创作，主要内容包括：本申请公开了一种shellcode的检测方法、装置、计算机设备及计算机非易失性可读存储介质,涉及信息网络安全技术领域,可以对操作系统内核、关键的特定内存页进行监控,能够及时检测出异常的操作行为,有效发现shellcode攻击行为的执行。所述方法包括：对预设内存页的操作行为进行监控；若发生预设内存页的操作行为,则对所述预设内存页的操作行为进行合法性判定,以检测shellcode执行的攻击行为是否发生。该方法适用于对shellcode的检测。(The application discloses a detection method and device of shellcode, computer equipment and a non-volatile readable storage medium of a computer, relates to the technical field of information network security, and can monitor an operating system kernel and a key specific memory page, detect abnormal operation behaviors in time and effectively discover execution of shellcode attack behaviors. The method comprises the following steps: monitoring the operation behavior of a preset memory page; and if the operation behavior of the preset memory page occurs, carrying out validity judgment on the operation behavior of the preset memory page so as to detect whether the attack behavior executed by the shellcode occurs. The method is suitable for detecting the shellcode.)