Abstract: In an SNS server (103) corresponding to a false submission filter device, an event specifying unit (604) analyzes contents of a submission informing of an occurrence of an event and specifies a location (721) of occurrence of the event. A query destination specifying unit (605) searches a query destination database (613) and specifies a query destination corresponding to the location (721) specified by the event specifying unit (604). A query unit (606) transmits a request for checking the presence or absence of occurrence of the event from the observation result of one or more machines to the query destination specified by the query destination specifying unit (605). The query unit (606) receives a response to the request. A result reflecting unit (607) determines whether the contents of the submission are true or false from a check result indicated by the response received by the query unit (606).

Abstract: A security diagnosis device includes: an extraction unit to extract, from among parameters included in an HTTP request transmitted to a transition destination URL by a first account of privileged authority, a fixed parameter which has a same value as a parameter included in an HTTP request transmitted to the transition destination URL by a second account of the privileged authority; a request generation unit, when the fixed parameter extracted by the extraction unit is included in a parameter in an HTTP request to the transition destination URL by an account of general authority, and when a value differs from a value of an account of the privileged authority, to output the HTTP request in which the value of the account of the privileged authority is set to the fixed parameter; a request transmission/reception unit to transmit the HTTP request to the transition destination URL by the account of the general authority, and receives an HTTP response; and a determination unit to determine vulnerability of the tran