Title | ||
---|---|---|
HackSim: an automation of penetration testing for remote buffer overflow vulnerabilities |
Abstract | ||
---|---|---|
We propose an extensible exploit framework for automation of penetration testing (or pen-testing) without loss of safety and describe possible methods for sanitizing unreliable code in each part of the framework. The proposed framework plays a key role in implementing HackSim a pen-testing tool that remotely exploits known buffer-overflow vulnerabilities. Implementing our enhanced version of HackSim for Solaris and Windows systems, we show the advantages of our sanitized pen-testing tool in terms of safety compared with existing pen-testing tools and exploit frameworks. This work is stepping toward a systematic approach for substituting difficult parts of the labor-intensive pen-testing process. |
Year | DOI | Venue |
---|---|---|
2005 | 10.1007/978-3-540-30582-8_68 | ICOIN |
Keywords | Field | DocType |
windows system,penetration testing,difficult part,proposed framework,pen-testing tool,buffer-overflow vulnerability,labor-intensive pen-testing process,possible method,enhanced version,key role,remote buffer overflow vulnerability,buffer overflow | Remote procedure call,Brute-force attack,Computer science,Automation,Exploit,Extensibility,Vulnerability,Buffer overflow,Distributed computing,Embedded system | Conference |
Volume | ISSN | ISBN |
3391 | 0302-9743 | 3-540-24467-0 |
Citations | PageRank | References |
2 | 0.38 | 2 |
Authors | ||
7 |
Name | Order | Citations | PageRank |
---|---|---|---|
O-Hoon Kwon | 1 | 31 | 3.27 |
Seung Min Lee | 2 | 58 | 12.14 |
Heejo Lee | 3 | 1501 | 132.47 |
Jong Kim | 4 | 6 | 1.46 |
Sang Cheon Kim | 5 | 2 | 0.38 |
Gun Woo Nam | 6 | 2 | 0.38 |
Joong Gil Park | 7 | 2 | 0.38 |