研究生: |
蔡政達 Cheng-Da Tsai |
---|---|
論文名稱: |
分散式滲透掃瞄系統之實作 An Implementation of Distributed Penetration Scanning System |
指導教授: |
吳宗成
Tzong-Chen Wu |
口試委員: |
羅乃維
Nai-Wei Lo 查士朝 Shi-Cho Cha |
學位類別: |
碩士 Master |
系所名稱: |
管理學院 - 資訊管理系 Department of Information Management |
論文出版年: | 2016 |
畢業學年度: | 104 |
語文別: | 中文 |
論文頁數: | 52 |
中文關鍵詞: | 滲透測試 、網站掃描器 、域名掃描器 、連接埠掃描器 、資料外洩資料庫 |
外文關鍵詞: | Penetration Test, Web Scanner Sub-Domain Scanner, Port Scanner, Data Leaked Database |
相關次數: | 點閱:285 下載:2 |
分享至: |
查詢本校圖書館目錄 查詢臺灣博碩士論文知識加值系統 勘誤回報 |
網際網路日益發展,網路攻擊事件層出不窮,尤其在這些網路事件中,對於網路層面的滲透以及持續性滲透攻擊 APT (Advanced Persistent Threat)的威脅更是一大挑戰,這個挑戰導致政府及企業對於資訊安全的需求日益漸增。因此對於滲透測試的需求也是越來越迫切。
但隨著科技進步、企業網路架構日益複雜,現今要完成一次滲透測試則是越來越困難,因此本論文意在建構一個易於使用的分散式系統,透過集成多種蒐集資訊的方法,建構出一個可讓滲透測試人員在面對複雜網路環境中減少疏失、遺漏,提高掃描速度、準確度及覆蓋度。
Today, there are several Cyber-attacks happened in the world. Due to the prevalence of Internet Technology, APT (Advanced Persistent Threat) and Targeted Attack have become the most challenging threats to corporations and government. For this reason, many corporations and governments need to pay more attention on information security and increase the urgency for penetration testing.
It's difficult to complete a penetration test because the network architecture becomes more complex nowadays. This research is focusing on constructing an easy to use distributed penetration scanning system. It integrated multiple methods of information gathering and demonstrated a system can be used by penetration testers easily.
[1] S. M. Bellovin. “Security Problems in the TCP/IP Protocol Suite”. 1989.
[2] Florian Weimer. “Passive DNS Replication”. 2004.
[3] Annie I. Antón, Julia B. Earp, Jessica D. Young. “How Internet Users’ Privacy Concerns Have Evolved since 2002”. 2009.
[4] Cynthia Wagner, Jérôme François, Radu State, Thomas Engel. “SDBF: Smart DNS Brute-Forcer”. 2012.
[5] 胡榮貴、許成喜、汪永益、張亮. “马科夫链在域名信息探测中的应用”. 2015.
[6] Udi Manber, Gene Myers . “Suffix arrays: A new method for on-line string searches”. 1990
[7] “DataLossDB”. Retrieved May 6, 2016, from https://blog.datalossdb.org/
[8] “Beanstalkd”. Retrieved May 6, 2016, from https://github.com/kr/beanstalkd
[9] “DNSenum”. Retrieved May 6, 2016, from http://tools.kali.org/information-gathering/dnsenum
[10] “Fierce”. Retrieved May 6, 2016, from http://tools.kali.org/information-gathering/fierce
[11] “theHarvester”. Retrieved May 6, 2016, from https://github.com/
laramies/theHarvester
[12] OWASP. “DirBuster”, Retrieved May 6, 2016, from https://www.owasp.org/
index.php/Category:OWASP_DirBuster
[13] “DNSDB”. Retrieved May 6, 2016, from https://dnsdb.info/