公开(公告)号：US07228566B2

公开(公告)日：2007-06-05

申请号：US10054307

申请日：2002-01-22

申请人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： H04L9/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理程序接收信息，处理信息并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US07757293B2

公开(公告)日：2010-07-13

申请号：US11735491

申请日：2007-04-16

申请人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： H04L9/00 ,  G06F11/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理接收信息，处理信息，并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US20070204347A1

公开(公告)日：2007-08-30

申请号：US11735491

申请日：2007-04-16

申请人： Maximiliano Caceres ,  Gerardo Richarte ,  Agustin Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friedrichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Caceres ,  Gerardo Richarte ,  Agustin Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friedrichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： G06F11/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理程序接收信息，处理信息并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US07277937B2

公开(公告)日：2007-10-02

申请号：US10621840

申请日：2003-07-16

申请人： Maximiliano Gabriel Caceres ,  Javier Burroni ,  Gustavo Ajzenman ,  Ricardo Quesada ,  Gerardo Gabriel Richarte ,  Luciano Notarfrancesco ,  Bruce Robert Leidl ,  Agustin Azubel Friedman ,  Gabriel Martin Becedillas Ruiz

发明人： Maximiliano Gabriel Caceres ,  Javier Burroni ,  Gustavo Ajzenman ,  Ricardo Quesada ,  Gerardo Gabriel Richarte ,  Luciano Notarfrancesco ,  Bruce Robert Leidl ,  Agustin Azubel Friedman ,  Gabriel Martin Becedillas Ruiz

IPC分类号： G06F15/173

CPC分类号： G06F9/547 ,  G06F21/50 ,  G06F21/52 ,  H04L63/1433

摘要： A system is provided for executing a system call originating in a local computer on a first remote computer connected to the local computer via a network. Communication is established between the local computer and the first remote computer via the network. A syscall server is installed in the first remote computer. A reference address is sent from the first remote computer to the local computer via the network through execution of code by the syscall server. A syscall request is built in the local computer with arguments determined using the reference address received from the first remote computer. The syscall request is sent from the local computer to the first remote computer via the network. The syscall request is copied into a stack of the first remote computer through execution of code by the syscall server. Registers are popped from the syscall request in the stack. Execution of a syscall request is initiated on the first remote computer. The result of the syscall request is pushed onto the stack. At least a portion of the result of the syscall request is sent to the local computer via the network through execution of code by the syscall server.

摘要翻译： 提供了一种用于在经由网络连接到本地计算机的第一远程计算机上执行源自本地计算机的系统呼叫的系统。 通过网络在本地计算机和第一远程计算机之间建立通信。 系统调用服务器安装在第一台远程计算机中。 通过系统呼叫服务器执行代码，通过网络将参考地址从第一个远程计算机发送到本地计算机。 在本地计算机中构建系统调用请求，其参数使用从第一台远程计算机接收的参考地址确定。 系统调用请求通过网络从本地计算机发送到第一个远程计算机。 通过系统调用服务器执行代码将系统调用请求复制到第一个远程计算机的堆栈中。 寄存器从堆栈中的系统调用请求弹出。 在第一台远程计算机上启动系统调用请求的执行。 系统调用请求的结果被推入堆栈。 系统调用请求的结果的至少一部分通过系统呼叫服务器执行代码通过网络发送到本地计算机。