| 摘 要: 渗透测试是一种在获得用户或甲方单位授权的情况下,对用户信息系统或目标系统实施漏洞攻击的方法。 目前所有渗透测试的技术体系理论工作都处于不断完善和更新中。通过分析黑客攻击行为的完整流程,本文提出一种基 于Kali-Linux进行渗透测试的方法,以提高渗透测试效率和能力。本文总结了当前业内被接受程度较高的几大标准技 术测试体系理论,通过使用Kali-Linux系统作为平台载体,说明一套完整的渗透测试的思路、流程、步骤和结果输出 等为网络管理者提供参考。 |
| 关键词: 网络安全;安全测试;漏洞评估;Kali-Linux;渗透测试 |
|
中图分类号: TP399
文献标识码: A
|
| 基金项目: 湖北理工学院科学研究青年项目,项目编号:15xjz03Q;湖北理工学院科学研究青年项目,项目编号:15xjz02Q;湖北理工学院科学研究青年项目,项目编号: 14xjz06Q. |
|
| Research and Design of the Penetration Test Method Based on Kali-Linux |
|
YAO Li,LIN Kechen,DENG Danjun
|
( School of Computer Science and Technology, Hubei Polytechnic University, Huangshi 435003, China)
|
| Abstract: The penetration test is a method to attack the user information system or the target system in the case of obtaining the authorization from the user or the first-party organization.At present,all the technical systems of the penetration test are constantly improving and updating.By analyzing the complete process of hacking,this paper puts forward a penetration test method based on Kali-Linux to improve the efficiency and capacity of penetration test.Several standardized technical test systems with high acceptance level in the industry are adopted in the research.Using the Kali-Linux system as the platform,the paper introduces the whole set of design,flow,procedures and result,providing some reference to network administrators. |
| Keywords: network security;security testing;vulnerability assessment;Kali-Linux;penetration test |
