Key points are not available for this paper at this time.
With the rapid development of information technology, many vulnerabilities have caused great security risks to information systems. These security vulnerabilities have become gateways and pathways for the propagation of malicious software. To uncover security threats within information systems and assess their severity, engineers periodically conduct penetration testing on the systems and implement security enhancements based on the results of the penetration tests. In order to reduce manual involvement in the penetration testing process and lessen the reliance on specialized skills during the testing process, the paper design an automated security penetration testing system. The system establishes a penetration testing platform, combining manual and automated methods to evaluate the security of information systems, which provides an in-depth assessment of the security of the target system. Based on this novel platform, a penetration test experiment for mimicry structure information system is carried out. The experimental results show that the automatic safe penetration testing system designed in this paper realizes the automatic calling and execution of tools, and improves the efficiency and accuracy of the penetration testing process. The system designed in this paper has good value of promotion and application.
Bu et al. (Fri,) studied this question.