摘要
为解决日常网络安全检测活动中综合使用多种维度的网络安全检测工具数据自动化汇总和统计耗费大量人力、汇总统计易出错等问题,文章在对各类主流网络安全工具原始报告结构调研的基础上,对当前HTML文件和PDF文件内容进行了解析及调研,实现了多源异构网络安全检测评估报告统计分析工具,能够对绿盟漏洞扫描工具、绿盟基线核查工具、Acunetix Web Application Scan和源代码扫描工具Fortify等原始报告的关键数据进行解析、汇总分析并形成汇总报告,极大地提高了安全检测人员的报告编写效率。
In order to solve the problems of automatic data collection and statistics using multi-dimensional network security detection tools in daily network security detection activities,which consume a lot of manpower and are prone to errors in summary statistics,based on the research on the original report structure of various mainstream network security tools.the current HTMI.file and PDF file content analysis were investigated,and a statistical analysis tool for multi-source heterogeneous network security detection evaluation reports was implemented,It can analyze.summarize and analyze the key data of original reports such as the vulnerabilty scanning tool,baseline verification tool,Acunetix Web A pplication Scan and source code scanning tool Fortify,and form summary reports,which greatly improves the report writing efficiency of security testers.
作者
尹君
李寒箬
王海林
向华伟
赵晓平
YIN Jun;LI Hanruo;WANG Hailin;XIANG Huawei;ZHAO Xiaoping(Information Center,Yunnan Power Grid Co.,Ltd.,Kunming 650217,China)
出处
《计算机应用文摘》
2023年第5期40-42,共3页
Chinese Journal of Computer Application
关键词
多源异构网络安全
检测评估
统计工具
分析工具
multi source heterogeneous network security
inspection and evaluation
statistical tools
analysis tools
