Network Penetration Testing Scheme Description Language

Dai, Zhiyong; Lv, Liangshuang; Liang, Xiaoyan; Yang, Bo‐Suk

doi:10.1109/iccis.2011.181

Cited by 5 publications

(2 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Approaches based on threat models [46], ontologies and big data techniques [47], static and dynamic analysis [48], Petri nets [49], fuzzy classifiers [50], expert systems [51], planning automation [52], automated pathfinding [53] (including map/graph-based techniques [54]), and agent-based modeling [55] have been proposed. Prior research has also developed a variety of machine learning techniques, such as those using reinforcement learning [56][57][58][59][60] and deep reinforcement learning [61,62], as well as supporting technologies, such as a description language [63]. Despite all of this, some suggest that human penetration testing is still needed due to the capability of human testers to think creatively.…”

Section: Security Testing Automationmentioning

confidence: 99%

Distributed Attack Deployment Capability for Modern Automated Penetration Testing

et al. 2022

View full text Add to dashboard Cite

Cybersecurity is an ever-changing landscape. The threats of the future are hard to predict and even harder to prepare for. This paper presents work designed to prepare for the cybersecurity landscape of tomorrow by creating a key support capability for an autonomous cybersecurity testing system. This system is designed to test and prepare critical infrastructure for what the future of cyberattacks looks like. It proposes a new type of attack framework that provides precise and granular attack control and higher perception within a set of infected infrastructure. The proposed attack framework is intelligent, supports the fetching and execution of arbitrary attacks, and has a small memory and network footprint. This framework facilitates autonomous rapid penetration testing as well as the evaluation of where detection systems and procedures are underdeveloped and require further improvement in preparation for rapid autonomous cyber-attacks.

show abstract

Section: Security Testing Automationmentioning

confidence: 99%

Distributed Attack Deployment Capability for Modern Automated Penetration Testing

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Penetration testing is widely used to help ensure the security of the network. [4] Establishing the test ground rules is a particularly important part of Penetration analysis. [10] The same concept of penetration testing has been used in this tool.…”

Section: Related Workmentioning

confidence: 99%

PJCT: Penetration testing based JAVA code testing tool

Jain

Johari

Kaur

2015

International Conference on Computing, Communication &Amp; Automation

View full text Add to dashboard Cite

Security is the key concern for every system, network or application. Penetration Testing in Software engineering and System Security in Computer Networks are key areas in secure development of an application. Many approaches and research techniques have tried to address the issue of secure coding in development phase only. Rigorous approaches have been introduced in the treatment of security aspects in information systems. Penetration testing is one of the approaches for system security. Penetration testing helps to contradict the security aspects of the system. It is technique of deceiving the hypothesis that any system, network or application is secure. Our study reveals that there are hardly any good quality tool(s) that can detect the vulnerable code in Application, so in this paper we propose a Penetration Testing based Java Code Testing Tool (PJCT) to check major security attribute of any given java code. The PJCT can detect the presence or absence of seven attributes, which we introduce for the first time to test the security of the application effectively. In this paper performance analysis of PJCT has been exhibited and also it's comparison with other tools such as PIC et al. have also been demonstrated.

show abstract