本文關(guān)鍵詞： 漏洞掃描 OpenVAS 網(wǎng)絡(luò)安全 多線(xiàn)程 OMP協(xié)議　出處：《濟(jì)南大學(xué)》2016年碩士論文　論文類(lèi)型：學(xué)位論文

【摘要】：隨著計(jì)算機(jī)網(wǎng)絡(luò)技術(shù)的日趨完善,互聯(lián)網(wǎng)已經(jīng)成為人們必不可少的通信工具。然而,在人們享受互聯(lián)網(wǎng)帶來(lái)便利性的同時(shí),互聯(lián)網(wǎng)安全問(wèn)題也愈發(fā)嚴(yán)重,每天各種惡意的攻擊破壞行為層出不窮。漏洞掃描技術(shù)能夠檢測(cè)出系統(tǒng)的潛在漏洞,使系統(tǒng)維護(hù)者能夠事先預(yù)測(cè)攻擊者的行為,降低黑客攻擊造成的損失。本文深入研究與分析開(kāi)源漏洞掃描工具OpenVAS的相關(guān)技術(shù)和工作原理,成功將OpenVAS移植到基于中標(biāo)麒麟系統(tǒng)的龍芯3B服務(wù)器上,并在此基礎(chǔ)中進(jìn)行了二次開(kāi)發(fā)工作,實(shí)現(xiàn)了一套基于國(guó)產(chǎn)服務(wù)器的可靠漏洞掃描系統(tǒng)。論文進(jìn)行的主要工作如下:(1)對(duì)安全漏洞進(jìn)行了深入研究,分析漏洞產(chǎn)生的原因以及可能帶來(lái)的危害。闡述了常用的漏洞掃描技術(shù)以及OpenVAS采用的相關(guān)技術(shù)。分析OMP協(xié)議,為實(shí)現(xiàn)漏洞掃描系統(tǒng)打下基礎(chǔ)。(2)深入研究OpenVAS漏洞掃描系統(tǒng),閱讀理解掃描模塊的源碼并進(jìn)行相關(guān)優(yōu)化工作,系統(tǒng)研究NASL腳本,并對(duì)典型腳本進(jìn)行分析。實(shí)現(xiàn)OpenVAS在中標(biāo)麒麟操作系統(tǒng)上的移植工作。(3)設(shè)計(jì)并實(shí)現(xiàn)基于B/S架構(gòu)的漏洞掃描系統(tǒng),系統(tǒng)主要由WEB客戶(hù)端,控制后臺(tái),OpenVAS后臺(tái)以及數(shù)據(jù)庫(kù)組成。(4)搭建漏洞掃描系統(tǒng)的測(cè)試環(huán)境,并進(jìn)行Linux,Windows,Mac系統(tǒng)下的測(cè)試工作,驗(yàn)證了漏洞掃描系統(tǒng)的可行性和有效性。經(jīng)過(guò)系統(tǒng)測(cè)試和產(chǎn)品審核,目前該漏洞掃描系統(tǒng)已通過(guò)驗(yàn)收,并且已經(jīng)投入實(shí)際使用。
[Abstract]:With the improvement of computer network technology, the Internet has become an indispensable communication tool. However, while people enjoy the convenience of the Internet, the Internet security problem is becoming more and more serious. Every day a variety of malicious attacks and vandalism emerge. Vulnerability scanning technology can detect potential vulnerabilities in the system and enable system maintainers to predict the behavior of attackers in advance. In this paper, we deeply study and analyze the technology and working principle of open source vulnerability scanning tool OpenVAS, and successfully transplant OpenVAS to Lonson 3B server based on winning Kirin system. On this basis, the second development work is carried out, and a reliable vulnerability scanning system based on domestic server is implemented. The main work of this paper is as follows: 1) the security vulnerability is deeply studied. This paper analyzes the cause and possible harm of vulnerability, expounds the commonly used vulnerability scanning technology and the related technology adopted by OpenVAS, analyzes the OMP protocol, lays a foundation for realizing the vulnerability scanning system, and deeply studies the OpenVAS vulnerability scanning system. Read and understand the source code of the scanning module and carry on the related optimization work, systematically study the NASL script, and analyze the typical script. Realize the transplantation of OpenVAS on the winning Kirin operating system. (3) Design and implement the vulnerability scanning system based on the B / S architecture. The system is mainly composed of WEB client, control backstage, OpenVAS and database to build the testing environment of the vulnerability scanning system, and carry out the testing work under the Linux Windows Windows Mac system. The feasibility and effectiveness of the vulnerability scanning system have been verified. After system test and product audit, the vulnerability scanning system has passed the acceptance check and has been put into practical use.
【學(xué)位授予單位】：濟(jì)南大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2016
【分類(lèi)號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前8條

1 吳世忠;郭濤;董國(guó)偉;王嘉捷;;軟件漏洞分析技術(shù)進(jìn)展[J];清華大學(xué)學(xué)報(bào)(自然科學(xué)版);2012年10期

2 王良;;漏洞掃描系統(tǒng)設(shè)計(jì)與應(yīng)用[J];信息安全與技術(shù);2011年Z1期

3 向碧群;黃仁;;漏洞掃描技術(shù)及其在入侵檢測(cè)系統(tǒng)中的應(yīng)用[J];計(jì)算機(jī)工程與設(shè)計(jì);2006年07期

4 李昕,左明;Linux下基于多線(xiàn)程的服務(wù)器程序設(shè)計(jì)[J];計(jì)算機(jī)工程與科學(xué);2005年12期

5 曹元大,李險(xiǎn)峰,薛靜鋒;漏洞掃描器中插件技術(shù)的研究[J];微機(jī)發(fā)展;2005年09期

6 趙振國(guó),蔡皖東;網(wǎng)絡(luò)漏洞掃描器的設(shè)計(jì)與實(shí)現(xiàn)[J];微電子學(xué)與計(jì)算機(jī);2005年04期

7 李鵬,楊獻(xiàn)榮,許麗華;網(wǎng)絡(luò)漏洞掃描器的設(shè)計(jì)與實(shí)現(xiàn)[J];計(jì)算機(jī)工程;2003年08期

8 曹元大,楊帆,薛靜鋒,翟永;基于UNIX主機(jī)系統(tǒng)的漏洞掃描器的設(shè)計(jì)[J];北京理工大學(xué)學(xué)報(bào);2002年06期

，

本文編號(hào)：1548478