新型主动式漏洞检测系统

Novel Active Vulnerability Detection System

介绍了一种采用C/S结构的新型主动式漏洞检测系统。该系统利用了OVAL漏洞检测定义,包括检测代理和控制台两大模块。其中,检测代理是基于OVALSchema的漏洞扫描器,能在不对本地计算机系统和网络系统造成任何损害的情况下,全面有效地检测主机漏洞,并将漏洞信息结果上报给控制台,而控制台端实现了同时控制局域网内多台主机的漏洞扫描,并将整个局域网的漏洞信息汇总。大量实验测试证明,该系统是可行且具有先进性的。

The paper proposes a novel active vulnerability detection system based on C/S mode. This system is composed of two modules： agent and console. The detection agent, which is a vulnerability scanner based on OVAL Schema, can give an effective and all-sided vulnerability scan as well as reporting the result to the console without any damage to the network. At the same time, the console realizes remote control against the process of scans on several computers and gathering of scan results of the whole network. The test result proves that this system is feasible and advanced.