SEEMA:漏洞评估和渗透测试的自动化框架

2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN) Pub Date : 2023-05-05 DOI:10.1109/ViTECoN58111.2023.10157032

Yash Tyagi, Shubham Shekhar, A. P, S. Bhardwaj

{"title":"SEEMA:漏洞评估和渗透测试的自动化框架","authors":"Yash Tyagi, Shubham Shekhar, A. P, S. Bhardwaj","doi":"10.1109/ViTECoN58111.2023.10157032","DOIUrl":null,"url":null,"abstract":"The world has witnessed an exponential increase in the number of Internet Connected Computers due to various causes. This exponential increase and the resulting dependence have had far reaching cybersecurity implications. The primary implication being exponential rise in cybercrime which necessitates the vulnerability assessment and penetration testing (VAPT). The vulnerability assessment and penetration testing aids in offsetting any liability associated with a successful attack on an organization's asset. The current frameworks and tool available for VAPT require very high expert knowledge and are predominantly manual. Moreover, some tools available automate only certain phases of VAPT but not the whole process. This mismatch provides the opportunity to create a solution by automating the whole process while lowering the knowledge threshold. Thus, this paper provides a revamped automated framework for a novice individual and a cybersecurity professional's use. It also provides a framework for commercial use which leverages multi-agent system and certain aspects of full stack monitoring.","PeriodicalId":407488,"journal":{"name":"2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN)","volume":"140 6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-05-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"SEEMA: An Automation Framework for Vulnerability Assessement and Penetration Testing\",\"authors\":\"Yash Tyagi, Shubham Shekhar, A. P, S. Bhardwaj\",\"doi\":\"10.1109/ViTECoN58111.2023.10157032\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The world has witnessed an exponential increase in the number of Internet Connected Computers due to various causes. This exponential increase and the resulting dependence have had far reaching cybersecurity implications. The primary implication being exponential rise in cybercrime which necessitates the vulnerability assessment and penetration testing (VAPT). The vulnerability assessment and penetration testing aids in offsetting any liability associated with a successful attack on an organization's asset. The current frameworks and tool available for VAPT require very high expert knowledge and are predominantly manual. Moreover, some tools available automate only certain phases of VAPT but not the whole process. This mismatch provides the opportunity to create a solution by automating the whole process while lowering the knowledge threshold. Thus, this paper provides a revamped automated framework for a novice individual and a cybersecurity professional's use. It also provides a framework for commercial use which leverages multi-agent system and certain aspects of full stack monitoring.\",\"PeriodicalId\":407488,\"journal\":{\"name\":\"2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN)\",\"volume\":\"140 6 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-05-05\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ViTECoN58111.2023.10157032\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ViTECoN58111.2023.10157032","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

由于各种原因，世界上联网计算机的数量呈指数级增长。这种指数级增长和由此产生的依赖性对网络安全产生了深远的影响。主要的影响是网络犯罪呈指数级增长，这就需要脆弱性评估和渗透测试(VAPT)。漏洞评估和渗透测试有助于抵消与对组织资产的成功攻击相关的任何责任。目前可用于VAPT的框架和工具需要非常高的专家知识，并且主要是手动的。此外，一些可用的工具只能自动化VAPT的某些阶段，而不是整个过程。这种不匹配提供了通过自动化整个过程来创建解决方案的机会，同时降低了知识门槛。因此，本文为新手和网络安全专业人员的使用提供了一个改进的自动化框架。它还提供了一个用于商业用途的框架，该框架利用了多代理系统和全栈监视的某些方面。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

SEEMA: An Automation Framework for Vulnerability Assessement and Penetration Testing

The world has witnessed an exponential increase in the number of Internet Connected Computers due to various causes. This exponential increase and the resulting dependence have had far reaching cybersecurity implications. The primary implication being exponential rise in cybercrime which necessitates the vulnerability assessment and penetration testing (VAPT). The vulnerability assessment and penetration testing aids in offsetting any liability associated with a successful attack on an organization's asset. The current frameworks and tool available for VAPT require very high expert knowledge and are predominantly manual. Moreover, some tools available automate only certain phases of VAPT but not the whole process. This mismatch provides the opportunity to create a solution by automating the whole process while lowering the knowledge threshold. Thus, this paper provides a revamped automated framework for a novice individual and a cybersecurity professional's use. It also provides a framework for commercial use which leverages multi-agent system and certain aspects of full stack monitoring.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 2nd International Conference on Vision Towards Emerging Trends in Communication and Networking Technologies (ViTECoN)

自引率

0.00%

发文量