摘要
面对日益增长的网络攻击行为以及攻击手段的复杂化,网络安全工作人员需要更多地从攻击方的角度来挖掘和修复保护目标存在的问题和弱点。为达到这一目的,需要一个能够模拟攻击者的攻击工具和对工具进行测试的实验平台。基于此,笔者构建了一个使用开源框架Metasploit的渗透测试平台,并对渗透测试实现过程进行验证。
Faced with the growing number of cyber attacks and the complexity of their means,network security workers need to mine and fix problems and weaknesses in protected targets from the perspective of the attackers.To achieve this,an experimental platform that simulates an attackers attack tool and tests it.The research objective of this topic is to build an penetration testing platform using the open source framework Metasploit and to validate the penetration testimplementation process.
作者
郑少凡
连宏浩
苏汉彬
王炅
Zheng Shaofan;Lian Honghao;Su Hanbin;Wang Jiong(School of Computer and Control Engineering,Minjiang University,Fuzhou Fujian 350121,China)
出处
《信息与电脑》
2020年第2期175-176,179,共3页
Information & Computer
基金
基于Metasploit框架的渗透测试(项目编号:103952019081)。
