CN107454081A - The method for automatically generating POC scripts - Google Patents

The method for automatically generating POC scripts Download PDF

Info

Publication number
CN107454081A
CN107454081A CN201710666729.6A CN201710666729A CN107454081A CN 107454081 A CN107454081 A CN 107454081A CN 201710666729 A CN201710666729 A CN 201710666729A CN 107454081 A CN107454081 A CN 107454081A
Authority
CN
China
Prior art keywords
script
poc
attack
fill
scripts
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710666729.6A
Other languages
Chinese (zh)
Inventor
吴思宏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sichuan Changhong Electric Co Ltd
Original Assignee
Sichuan Changhong Electric Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sichuan Changhong Electric Co Ltd filed Critical Sichuan Changhong Electric Co Ltd
Priority to CN201710666729.6A priority Critical patent/CN107454081A/en
Publication of CN107454081A publication Critical patent/CN107454081A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1416Event detection, e.g. attack signature detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1433Vulnerability analysis

Abstract

The invention discloses a kind of method for automatically generating POC scripts, it is main to use addition black box plug-in unit and addition attack load both approaches, by filling in corresponding information and automatically collecting, and generate attack script, the script of generation is put into engine simultaneously, it is automatic to verify whether script can use, can be with being then put into POC script databases, and feedback user, script pass through immediately;It is unavailable, manual calibration database is put into, carries out manual amendment, and carry out second and test, if the verification passes, then POC databases are put into, and feedback user immediately, script pass through;If verify again not by abandoning script, feedback user script does not pass through.Present invention reduces the cost of labor of POC functional verifications, improves efficiency.

Description

The method for automatically generating POC scripts
Technical field
The present invention relates to technical field of network security, and in particular to a kind of method for automatically generating POC scripts.
Background technology
With the development of information age, country enters Internet era, while country payes attention to network security space hair Exhibition, so major security platform arises at the historic moment, but because safe practice needs extremely strong time and technology accumulation, so Chinese The characteristics of foring dominance, therefore white cap ability and demand are ignored by large-scale security firm, it is desirable to unified language, specification etc., Increase white cap and submit leak plug-in unit cost, a kind of awkward result occur:White cap with strength holds it scorn to take time to obtain Take the remuneration, it is desirable to submit plug-in unit to exchange the white cap of remuneration for and do not possess enough development abilities, the framework effectively solves The problem.
The content of the invention
Instant invention overcomes the deficiencies in the prior art, there is provided a kind of method for automatically generating POC scripts, it is intended to reduce product Member's R&D costs are researched and developed, simplify workload.
In view of the above mentioned problem of prior art, according to one side disclosed by the invention, the present invention uses following technology Scheme:
A kind of method for automatically generating POC scripts, including:
Black box plug-in unit and/or attack load are selected added to the POC generation pages;
The black box plug-in unit and/or attack load generate test script source code respectively;
Automatically collect and call the test script source code of generation, then target of attack target drone, in the case of success attack, then Corresponding script is stored in POC script databases and the feedback of the information user for passing through script;
In the case where attacking failure, then corresponding scripts are put into manual calibration database, then carry out field debugging, then Attack test is carried out, POC script databases are put into attacking successful script, it is on the contrary then discard script, and to user feedback The information whether script passes through.
In order to which the present invention is better achieved, further technical scheme is:
The addition manner of black box plug-in unit includes according to one embodiment of the invention:
Fill in call instruction;
Fill in and return to success attack characteristic value value;
Upload black box plug-in unit;
Fill in target target drone IP or domain name.
According to another embodiment of the invention, after the black box plug-in unit is placed in into corresponding catalogue, call instruction and spy Value indicative Automatic generation of information test script source code.
The present invention can also be:
According to another embodiment of the invention, the addition manner of the attack load includes:
Fill in attack load;
Select message transmissions mode;
Fill in and return to success attack characteristic value;
Fill in target target drone IP or domain name;
Generate test script source code.
Compared with prior art, one of beneficial effects of the present invention are:
A kind of method for automatically generating POC scripts of the present invention, has:
1st, department employee's R&D costs are reduced, from needing to write logical code, become to fill out key modules information;
2nd, reduce network white cap and POC thresholds are provided, it is only necessary to fill in key modules information, it is not necessary to connect to adapt to the engine Mouthful, additional studies;
3rd, automation carries out script test, reduces manual testing's cost, efficiently real-time monitoring script quality, gives success white cap Feedback in time is provided, increases the white cap group of subscribers amount of platform.
Brief description of the drawings
, below will be to embodiment for clearer explanation present specification embodiment or technical scheme of the prior art Or the required accompanying drawing used is briefly described in the description of prior art, it should be apparent that, drawings in the following description are only It is the reference to some embodiments in present specification, for those skilled in the art, is not paying creative work In the case of, other accompanying drawings can also be obtained according to these accompanying drawings.
Fig. 1 is to automatically generate POC script process schematic diagrames according to one embodiment of the invention.
Embodiment
The present invention is described in further detail with reference to embodiment, but the implementation of the present invention is not limited to this.
As shown in figure 1, Fig. 1 show it is according to an embodiment of the invention automatically generate POC script process, it is a kind of automatic The method for generating POC scripts, specifically:
Step 1, the POC producer enter the POC generation pages;
Step 2, selection POC generating modes (are divided into:Add black box plug-in unit, addition attack load.);
Step 3, addition black box plug-in unit:A fills in call instruction, and b, which is filled in, returns to success attack characteristic value value, and c uploads black box Plug-in unit, d fill in target target drone IP or domain name;
Step 4, black box plug-in unit are put into corresponding catalogue, and call instruction and characteristic value information automatically generate test script source code;
Step 5, addition attack load:A fills in attack load, and b selection message transmissions mode is (such as:Post, get etc.), c is filled out Write and return to success attack characteristic value, d fills in target target drone IP or domain name, e generation test script source codes;
The attack script automatically generated or plug-in unit, target of attack target drone, if attacked are called in step 6, automatic calibration, automation Success, script deposit POC script databases are hit, feedback user script passes through;If calibration failure, into manual calibration data Storehouse;
Step 7, artificial extraction manual calibration database script, carry out field debugging, after the completion of carry out attack test, success Script is then put into POC script databases, feedback user script is by unsuccessfully discarding script, feedback user script does not pass through;
Step 8, flow terminate.
The present invention be directed to vulnerability scanning engine in plug-in unit increase, framework technology shown in its Fig. 1 can reduce R&D costs and Collection efficiency is improved, by quickly generating POC scripts, POC research and development thresholds, while automatic calibration function is reduced, reduces POC work( The cost of labor being able to verify that, improve efficiency.
To sum up, the present invention mainly with use addition black box plug-in unit (encapsulating the program with regard to leaky checking ability) and adds Add attack load both approaches, it is desirable to which client fills in corresponding information (such as:Interface command, load is attacked, mode of giving out a contract for a project, is returned Characteristic value, and IP test addresses etc.) automation collection, and generate attack script, while to the script of generation, be put into engine In, it is automatic to verify whether script can use, can be with being then put into POC script databases, and feedback user immediately, script pass through;Can not With manual calibration database is then put into, manual amendment is carried out, and carries out second and tests, if the verification passes, is then put into POC numbers According to storehouse, and feedback user immediately, script pass through;If verify again not by abandoning script, feedback user script does not pass through. It is slow to solve POC development efficiency, safety detection plug-in unit dependence language is various, can efficiently integrate or transplant different language exploitation test Script plug-in unit, improve the POC generation techniques of poc testing script exploitation speed.
Each embodiment is described by the way of progressive in this specification, what each embodiment stressed be with it is other The difference of embodiment, identical similar portion cross-reference between each embodiment.
" one embodiment " for being spoken of in this manual, " another embodiment ", " embodiment ", etc., refer to tying Specific features, structure or the feature for closing embodiment description are included at least one embodiment of the application generality description In.It is not necessarily to refer to same embodiment that statement of the same race, which occur, in multiple places in the description.Appoint furthermore, it is understood that combining When one embodiment describes a specific features, structure or feature, what is advocated is this to realize with reference to other embodiment Feature, structure or feature are also fallen within the scope of the present invention.
Although reference be made herein to invention has been described for multiple explanatory embodiments of the invention, however, it is to be understood that Those skilled in the art can be designed that a lot of other modifications and embodiment, and these modifications and embodiment will fall in this Shen Please be within disclosed spirit and spirit.More specifically, can be to master in the range of disclosure and claim The building block and/or layout for inscribing composite configuration carry out a variety of variations and modifications.Except what is carried out to building block and/or layout Outside variations and modifications, to those skilled in the art, other purposes also will be apparent.

Claims (4)

  1. A kind of 1. method for automatically generating POC scripts, it is characterised in that including:
    Black box plug-in unit and/or attack load are selected added to the POC generation pages;
    The black box plug-in unit and/or attack load generate test script source code respectively;
    Automatically collect and call the test script source code of generation, then target of attack target drone, then will be right in the case of success attack Answer script deposit POC script databases and the feedback of the information user for passing through script;
    In the case where attacking failure, then corresponding scripts are put into manual calibration database, then carry out field debugging, then carry out Attack test, POC script databases are put into attacking successful script, it is on the contrary then discard script, and to user feedback script The information whether passed through.
  2. 2. the method for generation POC scripts according to claim 1, it is characterised in that the addition manner bag of the black box plug-in unit Include:
    Fill in call instruction;
    Fill in and return to success attack characteristic value value;
    Upload black box plug-in unit;
    Fill in target target drone IP or domain name.
  3. 3. the method for generation POC scripts according to claim 1, it is characterised in that the black box plug-in unit is placed in corresponding mesh After record, call instruction and characteristic value information automatically generate test script source code.
  4. 4. the method for generation POC scripts according to claim 1, it is characterised in that the addition manner bag of the attack load Include:
    Fill in attack load;
    Select message transmissions mode;
    Fill in and return to success attack characteristic value;
    Fill in target target drone IP or domain name;
    Generate test script source code.
CN201710666729.6A 2017-08-07 2017-08-07 The method for automatically generating POC scripts Pending CN107454081A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710666729.6A CN107454081A (en) 2017-08-07 2017-08-07 The method for automatically generating POC scripts

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710666729.6A CN107454081A (en) 2017-08-07 2017-08-07 The method for automatically generating POC scripts

Publications (1)

Publication Number Publication Date
CN107454081A true CN107454081A (en) 2017-12-08

Family

ID=60490886

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710666729.6A Pending CN107454081A (en) 2017-08-07 2017-08-07 The method for automatically generating POC scripts

Country Status (1)

Country Link
CN (1) CN107454081A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108920963A (en) * 2018-07-23 2018-11-30 国网浙江省电力有限公司电力科学研究院 A kind of industrial control system automation Hole Detection plug-in unit generation method and system
CN109522723A (en) * 2018-11-14 2019-03-26 平安科技(深圳)有限公司 POC scenario generation method, device, electronic equipment and storage medium
CN111177729A (en) * 2019-12-17 2020-05-19 腾讯云计算(北京)有限责任公司 Program bug test method and related device
CN111309311A (en) * 2020-03-04 2020-06-19 杭州安恒信息技术股份有限公司 Vulnerability detection tool generation method, device, equipment and readable storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101242279A (en) * 2008-03-07 2008-08-13 北京邮电大学 Automatic penetration testing system and method for WEB system
CN102541729A (en) * 2010-12-31 2012-07-04 航空工业信息中心 Detection device and method for security vulnerability of software
US20120311711A1 (en) * 2011-05-31 2012-12-06 International Business Machines Corporation Detecting persistent vulnerabilities in web applications
CN104751056A (en) * 2014-12-19 2015-07-01 中国航天科工集团第二研究院七〇六所 Vulnerability verification system and method based on attack library
CN105991554A (en) * 2015-02-04 2016-10-05 阿里巴巴集团控股有限公司 Vulnerability detection method and equipment
CN106503563A (en) * 2016-10-17 2017-03-15 成都知道创宇信息技术有限公司 Batch leak detection method based on general framework
CN106951242A (en) * 2017-03-10 2017-07-14 北京白帽汇科技有限公司 A kind of generation method, equipment and the computing device of validating vulnerability program

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101242279A (en) * 2008-03-07 2008-08-13 北京邮电大学 Automatic penetration testing system and method for WEB system
CN102541729A (en) * 2010-12-31 2012-07-04 航空工业信息中心 Detection device and method for security vulnerability of software
US20120311711A1 (en) * 2011-05-31 2012-12-06 International Business Machines Corporation Detecting persistent vulnerabilities in web applications
CN104751056A (en) * 2014-12-19 2015-07-01 中国航天科工集团第二研究院七〇六所 Vulnerability verification system and method based on attack library
CN105991554A (en) * 2015-02-04 2016-10-05 阿里巴巴集团控股有限公司 Vulnerability detection method and equipment
CN106503563A (en) * 2016-10-17 2017-03-15 成都知道创宇信息技术有限公司 Batch leak detection method based on general framework
CN106951242A (en) * 2017-03-10 2017-07-14 北京白帽汇科技有限公司 A kind of generation method, equipment and the computing device of validating vulnerability program

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108920963A (en) * 2018-07-23 2018-11-30 国网浙江省电力有限公司电力科学研究院 A kind of industrial control system automation Hole Detection plug-in unit generation method and system
CN109522723A (en) * 2018-11-14 2019-03-26 平安科技(深圳)有限公司 POC scenario generation method, device, electronic equipment and storage medium
CN109522723B (en) * 2018-11-14 2023-11-03 平安科技(深圳)有限公司 POC script generation method and device, electronic equipment and storage medium
CN111177729A (en) * 2019-12-17 2020-05-19 腾讯云计算(北京)有限责任公司 Program bug test method and related device
CN111177729B (en) * 2019-12-17 2023-03-10 腾讯云计算(北京)有限责任公司 Program bug test method and related device
CN111309311A (en) * 2020-03-04 2020-06-19 杭州安恒信息技术股份有限公司 Vulnerability detection tool generation method, device, equipment and readable storage medium
CN111309311B (en) * 2020-03-04 2023-04-25 杭州安恒信息技术股份有限公司 Vulnerability detection tool generation method, device, equipment and readable storage medium

Similar Documents

Publication Publication Date Title
CN107454081A (en) The method for automatically generating POC scripts
CN109325351B (en) Security hole automatic verification system based on public testing platform
CN103984745B (en) Distributed video method for vertical search and system
CN102880546B (en) Software integration testing method and system based on extensible markup language (XML) database
CN110688659B (en) Method and system for dynamically detecting horizontal override based on IAST test tool
CN106961362B (en) Automated testing method and mobile cloud test system
CN108427632A (en) Automatic test approach and device
CN105243159A (en) Visual script editor-based distributed web crawler system
CN108234127A (en) A kind of Internet of Things method and device based on block chain
CN107766344B (en) Template rendering method and device and browser
CN103457757A (en) Method and system for network transaction monitoring using transaction flow signatures
CN107590236B (en) Big data acquisition method and system for building construction enterprises
CN110535970A (en) The evidence of judicial chain deposits card and processing method, device, equipment and medium
CN106778280A (en) A kind of long-range leak PoC write methods of filled type and leak detection method
CN107026871A (en) A kind of Web vulnerability scanning methods based on cloud computing
CN109522321A (en) A kind of data base query method, device, server and storage medium
Bocciarelli et al. BPMN-based business process modeling and simulation
CN107003931A (en) Test checking is separated from test execution
US20190073600A1 (en) Skipping maintenance mode of applications
CN104750463B (en) A kind of developing plug method and system
CN108460068A (en) Method, apparatus, storage medium and the terminal that report imports and exports
CN110489317A (en) Cloud system task run method for diagnosing faults and system based on workflow
CN107229628A (en) The method and device of distributed data base pretreatment
CN102546235A (en) Performance diagnosis method and system of web-oriented application under cloud computing environment
CN106202162B (en) It is a kind of for test recommend room data list test macro and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20171208