标题: | 跨平台 Web程式测试与攻击产生系统 A Generic Web Application Testing and Attack Generation Framework |
作者: | 刘欢 Liu, Huan 黄世昆 Huang, Shih-Kun 资讯科学与工程研究所 |
关键字: | 符号执行;网路安全;自动化;Symbolic Execution;Web Security;Automatic |
公开日期: | 2012 |
摘要: | 本论文以渗透测试的角度,提出一跨平台网页应用程式测试与攻击系统,此系统能针对目标 web 应用程式自动产生攻击字串,达成渗透测试的效果。 此系统透过网页爬虫取得待测 URL,并在 HTTP 要求中插入符号变数以记录执行过程中的路径限制式,藉此对现有的网页应用程式进行胁迫产生。采用方法架构于 S2E 上,是以 QEMU 为基础的符号执行环境。由于符号执行的执行时间呈指数成长,为了增进此系统的效率,采用单一路径符号执行方式来取得路径限制式。 目前已测试几种开放原始码的应用程式,能成功产生相对应的攻击字串。 This thesis proposed a generic web application testing and attack generation framework. This system can automatically generate attack strings for the target system, just like penetration test. This system uses a web crawler to explore URLs, and generate HTTP requests. Each test sends symbolic variable to the target server in order to record path constraint. It can solve constraints of exploit from those gathered paths. This system is based on S2E, a symbolic environment based on QEMU. In order to improve efficiency of symbolic execution, this system uses single path concolic execution to generate web application exploit. Finally, we have applied this system to several known vulnerabilities on open source web applications, and generated the corresponding exploit successfully. |
URI: | http://140.113.39.130/cdrfb3/record/nctu/#GT070156044 http://hdl.handle.net/11536/72392 |
显示于类别: | Thesis |
文件中的档案:
If it is a zip file, please download the file and unzip it, then open index.html in a browser to view the full text content.