Automation of active reconnaissance phase: An automated API-based port and vulnerability scanner

Basit Öğe Kaydı
dc.authorid0000-0002-2529-5533
dc.authorid0000-0001-6657-9738
dc.contributor.authorMalkawi, Malek
dc.contributor.authorÖzyer, Tansel
dc.contributor.authorAlhajj, Reda
dc.date.accessioned2022-03-01T07:01:06Z
dc.date.available2022-03-01T07:01:06Z
dc.date.issued2021
dc.departmentİstanbul Medipol Üniversitesi, Mühendislik ve Doğa Bilimleri Fakültesi, Bilgisayar Mühendisliği Bölümü
dc.description.abstractThe unprecedented growth in technology has increased the importance of the required information security that is still hard to be reached. Recently, network and web application attacks have occurred frequently, causing confidential data to be stolen by the available vulnerabilities in the systems and the most prominent is in the form of open ports. This causes the CIA (Confidentiality Integrity and Availability) Triad Model to break. Penetration testing is one of the key techniques used in real life to accurately detect the possible threats and potential attacks against the system, and the first step for hackers to conduct attacks is information collection. In this paper, we present a useful schema for the active information-gathering phase that can be used during penetration testing and by system administrators. It will be the first feature of a security engine going to be implemented. The work involves an automated API-based IP and port scanner, service-version enumerator, and vulnerability detection system. This scheme is based on the Network Mapper (Nmap) to collect the information with high accuracy depending on the provided rules in our schema. Besides, the work has been implemented as a RESTful-API server, aiming at easy integration for real-life cases and allowing administrators to scan and secure their networks more quickly and easily. The effectiveness and efficiency of this technique has been proved by the various test cases applied considering different scenarios from the real world. The average time of scanning a server and detecting the vulnerabilities is 2.2 minutes. Regardless of the number of vulnerabilities, the increase in time for each open port is just about 12 seconds.
dc.description.sponsorshipACM Special Interest Group on Knowledge Discovery in Data (SIGKDD) ; Elsevier ; IEEE Computer Society ; IEEE TCDE ; Springeren_US
dc.identifier.citationMalkawi, M., Özyer, T. ve Alhajj, R. (2021). Automation of active reconnaissance phase: An automated API-based port and vulnerability scanner. 13th IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining, ASONAM içinde (622-629. ss.). Virtual, Online, 8 November 2021. https://doi.org/10.1145/3487351.3492720
dc.identifier.doi10.1145/3487351.3492720
dc.identifier.endpage629
dc.identifier.isbn9781450391283
dc.identifier.scopus2-s2.0-85124417139
dc.identifier.scopusqualityN/A
dc.identifier.startpage622
dc.identifier.urihttps://doi.org/10.1145/3487351.3492720
dc.identifier.urihttps://hdl.handle.net/20.500.12511/9038
dc.indekslendigikaynakScopus
dc.institutionauthorMalkawi, Malek
dc.institutionauthorÖzyer, Tansel
dc.institutionauthorAlhajj, Reda
dc.language.isoen
dc.publisherAssociation for Computing Machinery, Inc
dc.relation.ispartof13th IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining, ASONAMen_US
dc.relation.publicationcategoryKonferans Öğesi - Uluslararası - Kurum Öğretim Elemanı
dc.rightsinfo:eu-repo/semantics/closedAccess
dc.subjectAPI
dc.subjectCyber Reconnaissance
dc.subjectInformation Security
dc.subjectNmap
dc.subjectPenetration Testing
dc.subjectPort Scanner
dc.subjectSecurity Vulnerabilities
dc.subjectVulnerability Assessment
dc.titleAutomation of active reconnaissance phase: An automated API-based port and vulnerability scanner
dc.typeConference Object

Dosyalar

Lisans paketi
Listeleniyor 1 - 1 / 1
Küçük Resim Yok
İsim:
license.txt
Boyut:
1.44 KB
Biçim:
Item-specific license agreed upon to submission
Açıklama:
İndir

Koleksiyon

Bildiri Koleksiyonu
Scopus İndeksli Yayınlar Koleksiyonu