全端口扫描速度和精度的研究

2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC) Pub Date : 2023-02-24 DOI:10.1109/ITNEC56291.2023.10082257

Jinxiong Zhao, Lan Yang, Chi Zhang, Jinpeng Zhang

{"title":"全端口扫描速度和精度的研究","authors":"Jinxiong Zhao, Lan Yang, Chi Zhang, Jinpeng Zhang","doi":"10.1109/ITNEC56291.2023.10082257","DOIUrl":null,"url":null,"abstract":"As the most basic means of network attack, port scanning is the most commonly used attack tool in penetration testing. Full-port scanning of the system can identify potential threats to the system in advance, however, existing full-port scanning methods need to scan the full amount of ports, which is relatively time-consuming. In this paper, we propose a sampling-based full-port scanning method that can minimize the scanning cost while maintaining the scanning accuracy. We use three port scanning tools to perform port scanning in a controlled environment to validate our method, and quantitatively analyze the scanning accuracy and scanning speed of different scanners in different scenarios. Besides, by analyzing the experimental results, we give a set of solutions for the use of scanners in different environments.","PeriodicalId":218770,"journal":{"name":"2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC)","volume":"660 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-02-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Research on the Speed and Accuracy of Full Port Scanning\",\"authors\":\"Jinxiong Zhao, Lan Yang, Chi Zhang, Jinpeng Zhang\",\"doi\":\"10.1109/ITNEC56291.2023.10082257\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As the most basic means of network attack, port scanning is the most commonly used attack tool in penetration testing. Full-port scanning of the system can identify potential threats to the system in advance, however, existing full-port scanning methods need to scan the full amount of ports, which is relatively time-consuming. In this paper, we propose a sampling-based full-port scanning method that can minimize the scanning cost while maintaining the scanning accuracy. We use three port scanning tools to perform port scanning in a controlled environment to validate our method, and quantitatively analyze the scanning accuracy and scanning speed of different scanners in different scenarios. Besides, by analyzing the experimental results, we give a set of solutions for the use of scanners in different environments.\",\"PeriodicalId\":218770,\"journal\":{\"name\":\"2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC)\",\"volume\":\"660 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-02-24\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ITNEC56291.2023.10082257\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITNEC56291.2023.10082257","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

端口扫描作为最基本的网络攻击手段，是渗透测试中最常用的攻击工具。系统的全端口扫描可以提前发现系统的潜在威胁，但现有的全端口扫描方法需要扫描全部端口，耗时较长。在本文中，我们提出了一种基于采样的全端口扫描方法，可以在保持扫描精度的同时最小化扫描成本。我们使用三种端口扫描工具在受控环境下进行端口扫描以验证我们的方法，并定量分析不同扫描仪在不同场景下的扫描精度和扫描速度。此外，通过对实验结果的分析，给出了一套针对不同环境下扫描仪使用的解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Research on the Speed and Accuracy of Full Port Scanning

As the most basic means of network attack, port scanning is the most commonly used attack tool in penetration testing. Full-port scanning of the system can identify potential threats to the system in advance, however, existing full-port scanning methods need to scan the full amount of ports, which is relatively time-consuming. In this paper, we propose a sampling-based full-port scanning method that can minimize the scanning cost while maintaining the scanning accuracy. We use three port scanning tools to perform port scanning in a controlled environment to validate our method, and quantitatively analyze the scanning accuracy and scanning speed of different scanners in different scenarios. Besides, by analyzing the experimental results, we give a set of solutions for the use of scanners in different environments.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 IEEE 6th Information Technology,Networking,Electronic and Automation Control Conference (ITNEC)

自引率

0.00%

发文量