摘要
为了提升网络安全人才的攻防技术、研究能力和实战能力,设计了虚拟仿真靶场。该平台应用Docker容器虚拟化技术+开源漏洞靶场,模拟企业实战环境,搭建案例化、场景化靶场环境。借助centos安装Docker靶机,采用windows和kali作为渗透攻击机进行测试。最终,搭建出一个全流程、高仿真、启动快,资源占用小、利用高的准安全攻防靶场运行环境。此方案为网络安全专业人才的培养提供了平台支撑和操作借鉴。
In order to improve the offensive and defensive technology research and practical ability of network security talents, a virtual simulation shooting range is designed. Docker container virtualization technology + open source vulnerability shooting range is applied to simulate the real combat environment of enterprises, and build case-based and scenario-based shooting range environment. Docker target is installed with CentOS, and Windows and Kali are used as penetration attack machines for testing.Finally, a quasi security attack and defense shooting range operation environment with whole process, high simulation, fast startup,small resource occupation and high utilization is built. It provides platform support and operational reference for the training of network security professionals.
作者
毕晓东
Bi Xiaodong(Zhejiang Technical Institute of Economics,Hangzhou,Zhejiang 310018,China)
出处
《计算机时代》
2022年第10期29-32,共4页
Computer Era
基金
浙江教育厅访工课题项目“基于Docker的网络安全靶场设计与实现”(FG2021265)。
关键词
DOCKER
虚拟化
漏洞
靶场
Docker
virtualization
vulnerability
shooting range
