关键词: 运行时程序自保护, 内存保护, 攻击链检测与响应, 内存Webshell检测, 容器安全

Abstract: Containers have become a vital infrastructure supporting cloud computing application execution, making container security increasingly crucial. The frequent occurrence of container security incidents has propelled the urgent need for research in container security protection. Unlike traditional host security measures that emphasize boundary defense, container security places greater emphasis on runtime and overall security protection. From an offensive and defensive standpoint, this paper proposes a detection study targeting the highrisk attack method of memory Webshell attacks in container environments.

Key words: runtime application self protection, memory protection, attack chain detection and response, memory Webshell detection, container security