安全洋葱中的漏洞

Proceedings of the 2021 6th International Conference on Systems, Control and Communications Pub Date : 2021-10-15 DOI:10.1145/3510362.3510363

Li Xu, G. Mogos

{"title":"安全洋葱中的漏洞","authors":"Li Xu, G. Mogos","doi":"10.1145/3510362.3510363","DOIUrl":null,"url":null,"abstract":"Once the development of information technology and network, the problem of information security is becoming increasingly prominent. The scope and content of network security threats continue to expand and evolve, and the network security situation and challenges are becoming increasingly severe and complex. It is becoming more and more important to perceive the network security situation, monitor the network operation status, and ensure the security of information assets. Security Onion (SO) is a free and opensource Linux distribution for threat hunting, enterprise security monitoring, and log management. Security Onion is used to monitor specific network traffic, detect intrusion actions, and stop the attacker from taking further actions. Bugs in other Linux versions of operating systems may also exist in SO. This paper presents some existing security bugs in Ubuntu and the Linux kernel and tests whether these exist and lead to security vulnerabilities that can be exploited in Security Onion as well. Kali Linux with Nmap and Metasploit-Framework is used to implement exploits.","PeriodicalId":407010,"journal":{"name":"Proceedings of the 2021 6th International Conference on Systems, Control and Communications","volume":"63 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-10-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Bugs in Security Onion\",\"authors\":\"Li Xu, G. Mogos\",\"doi\":\"10.1145/3510362.3510363\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Once the development of information technology and network, the problem of information security is becoming increasingly prominent. The scope and content of network security threats continue to expand and evolve, and the network security situation and challenges are becoming increasingly severe and complex. It is becoming more and more important to perceive the network security situation, monitor the network operation status, and ensure the security of information assets. Security Onion (SO) is a free and opensource Linux distribution for threat hunting, enterprise security monitoring, and log management. Security Onion is used to monitor specific network traffic, detect intrusion actions, and stop the attacker from taking further actions. Bugs in other Linux versions of operating systems may also exist in SO. This paper presents some existing security bugs in Ubuntu and the Linux kernel and tests whether these exist and lead to security vulnerabilities that can be exploited in Security Onion as well. Kali Linux with Nmap and Metasploit-Framework is used to implement exploits.\",\"PeriodicalId\":407010,\"journal\":{\"name\":\"Proceedings of the 2021 6th International Conference on Systems, Control and Communications\",\"volume\":\"63 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-10-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 2021 6th International Conference on Systems, Control and Communications\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/3510362.3510363\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2021 6th International Conference on Systems, Control and Communications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3510362.3510363","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

随着信息技术和网络的发展，信息安全问题日益突出。网络安全威胁的范围和内容不断扩大和演变，网络安全形势和挑战日益严峻复杂。感知网络安全形势，监控网络运行状态，保障信息资产安全变得越来越重要。Security Onion (SO)是一个免费的开源Linux发行版，用于威胁搜索、企业安全监控和日志管理。安全洋葱用于监控特定的网络流量，检测入侵行为，并阻止攻击者采取进一步的行动。其他Linux版本操作系统中的错误也可能存在于SO中。本文介绍了Ubuntu和Linux内核中存在的一些安全漏洞，并测试了这些漏洞是否存在，是否会导致安全漏洞，这些漏洞也可以在security Onion中被利用。Kali Linux使用Nmap和Metasploit-Framework实现漏洞利用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Bugs in Security Onion

Once the development of information technology and network, the problem of information security is becoming increasingly prominent. The scope and content of network security threats continue to expand and evolve, and the network security situation and challenges are becoming increasingly severe and complex. It is becoming more and more important to perceive the network security situation, monitor the network operation status, and ensure the security of information assets. Security Onion (SO) is a free and opensource Linux distribution for threat hunting, enterprise security monitoring, and log management. Security Onion is used to monitor specific network traffic, detect intrusion actions, and stop the attacker from taking further actions. Bugs in other Linux versions of operating systems may also exist in SO. This paper presents some existing security bugs in Ubuntu and the Linux kernel and tests whether these exist and lead to security vulnerabilities that can be exploited in Security Onion as well. Kali Linux with Nmap and Metasploit-Framework is used to implement exploits.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 2021 6th International Conference on Systems, Control and Communications

自引率

0.00%

发文量