公开(公告)号：US07228566B2

公开(公告)日：2007-06-05

申请号：US10054307

申请日：2002-01-22

申请人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： H04L9/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理程序接收信息，处理信息并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US07757293B2

公开(公告)日：2010-07-13

申请号：US11735491

申请日：2007-04-16

申请人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

发明人： Maximiliano Gerardo Caceres ,  Gerardo Gabriel Richarte ,  Agustin Azubel Friedman ,  Ricardo Quesada ,  Luciano Notarfrancesco ,  Oliver Friederichs ,  Javier Burroni ,  Gustavo Ajzenman ,  Gabriel Becedillas ,  Bruce Leidl

IPC分类号： H04L9/00 ,  G06F11/00

CPC分类号： H04L63/1433

摘要： A system is provided for performing penetration testing of a target computer network by installing a remote agent in the target computer network. The system includes a local agent provided in a computer console and configured to receive and execute commands. A user interface is provided in the console and configured to send commands to and receive information from the local agent, process the information, and present the processed information. A database is configured to store the information received from the local agent. A network interface is connected to the local agent and configured to communicate with the remote agent installed in the target computer network via a network. Security vulnerability exploitation modules are provided for execution by the local agent and/or the remote agent.

摘要翻译： 提供了一种用于通过在目标计算机网络中安装远程代理来执行目标计算机网络的穿透测试的系统。 该系统包括在计算机控制台中提供并配置为接收和执行命令的本地代理。 在控制台中提供用户界面，并配置为向本地代理发送命令并从本地代理接收信息，处理信息，并呈现已处理的信息。 数据库被配置为存储从本地代理接收到的信息。 网络接口连接到本地代理，并配置为经由网络与安装在目标计算机网络中的远程代理进行通信。 提供了安全漏洞利用模块，供本地代理和/或远程代理执行。

公开(公告)号：US07277937B2

公开(公告)日：2007-10-02

申请号：US10621840

申请日：2003-07-16

申请人： Maximiliano Gabriel Caceres ,  Javier Burroni ,  Gustavo Ajzenman ,  Ricardo Quesada ,  Gerardo Gabriel Richarte ,  Luciano Notarfrancesco ,  Bruce Robert Leidl ,  Agustin Azubel Friedman ,  Gabriel Martin Becedillas Ruiz

发明人： Maximiliano Gabriel Caceres ,  Javier Burroni ,  Gustavo Ajzenman ,  Ricardo Quesada ,  Gerardo Gabriel Richarte ,  Luciano Notarfrancesco ,  Bruce Robert Leidl ,  Agustin Azubel Friedman ,  Gabriel Martin Becedillas Ruiz

IPC分类号： G06F15/173

CPC分类号： G06F9/547 ,  G06F21/50 ,  G06F21/52 ,  H04L63/1433

摘要： A system is provided for executing a system call originating in a local computer on a first remote computer connected to the local computer via a network. Communication is established between the local computer and the first remote computer via the network. A syscall server is installed in the first remote computer. A reference address is sent from the first remote computer to the local computer via the network through execution of code by the syscall server. A syscall request is built in the local computer with arguments determined using the reference address received from the first remote computer. The syscall request is sent from the local computer to the first remote computer via the network. The syscall request is copied into a stack of the first remote computer through execution of code by the syscall server. Registers are popped from the syscall request in the stack. Execution of a syscall request is initiated on the first remote computer. The result of the syscall request is pushed onto the stack. At least a portion of the result of the syscall request is sent to the local computer via the network through execution of code by the syscall server.

摘要翻译： 提供了一种用于在经由网络连接到本地计算机的第一远程计算机上执行源自本地计算机的系统呼叫的系统。 通过网络在本地计算机和第一远程计算机之间建立通信。 系统调用服务器安装在第一台远程计算机中。 通过系统呼叫服务器执行代码，通过网络将参考地址从第一个远程计算机发送到本地计算机。 在本地计算机中构建系统调用请求，其参数使用从第一台远程计算机接收的参考地址确定。 系统调用请求通过网络从本地计算机发送到第一个远程计算机。 通过系统调用服务器执行代码将系统调用请求复制到第一个远程计算机的堆栈中。 寄存器从堆栈中的系统调用请求弹出。 在第一台远程计算机上启动系统调用请求的执行。 系统调用请求的结果被推入堆栈。 系统调用请求的结果的至少一部分通过系统呼叫服务器执行代码通过网络发送到本地计算机。

公开(公告)号：US08484738B2

公开(公告)日：2013-07-09

申请号：US12043673

申请日：2008-03-06

申请人： Alberto Gustavo Soliño Testa ,  Gerardo Gabriel Richarte ,  Fernando Federico Russ ,  Diego Martin Kelyacoubian ,  Ariel Futoransky ,  Diego Bartolome Tiscornia ,  Ariel Waissbein ,  Hector Adrian Manrique ,  Javier Ricardo De Acha Campos ,  Eduardo Arias ,  Sebastian Pablo Cufre ,  Axel Elián Brzostowski

发明人： Alberto Gustavo Soliño Testa ,  Gerardo Gabriel Richarte ,  Fernando Federico Russ ,  Diego Martin Kelyacoubian ,  Ariel Futoransky ,  Diego Bartolome Tiscornia ,  Ariel Waissbein ,  Hector Adrian Manrique ,  Javier Ricardo De Acha Campos ,  Eduardo Arias ,  Sebastian Pablo Cufre ,  Axel Elián Brzostowski

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC分类号： G06F21/577

摘要： A system and method provide application penetration testing. The system contains logic configured to find at least one vulnerability in the application so as to gain access to data associated with the application, logic configured to confirm the vulnerability and determine if the application can be compromised, and logic configured to compromise and analyze the application by extracting or manipulating data from a database associated with the application. In addition, the method provides for penetration testing of a target by: receiving at least one confirmed vulnerability of the target; receiving a method for compromising the confirmed vulnerability of the target; installing a network agent on the target in accordance with the method, wherein the network agent allows a penetration tester to execute arbitrary operating system commands on the target; and executing the arbitrary operating system commands on the target to analyze risk to which the target may be exposed.

摘要翻译： 系统和方法提供应用程序渗透测试。 该系统包含配置为在应用程序中找到至少一个漏洞的逻辑，以便访问与应用程序相关联的数据，配置为确认漏洞并确定应用程序是否可能受到损害的逻辑，以及配置为妥协和分析应用程序的逻辑 通过从与应用程序相关联的数据库中提取或操纵数据。 此外，该方法通过以下方式提供对目标的渗透测试：接收目标的至少一个确认的脆弱性; 接受破坏目标确认脆弱性的方法; 根据该方法在目标上安装网络代理，其中网络代理允许穿透测试器在目标上执行任意操作系统命令; 并执行目标上的任意操作系统命令来分析目标可能被暴露的风险。

公开(公告)号：US20080263671A1

公开(公告)日：2008-10-23

申请号：US12043673

申请日：2008-03-06

申请人： Alberto Gustavo Solino Testa ,  Gerardo Gabriel Richarte ,  Fernando Federico Russ ,  Diego Martin Kelyacoubian ,  Ariel Futoransky ,  Diego Bartolome Tiscornia ,  Ariel Waissbein ,  Hector Adrian Manrique ,  Javier Ricardo De Acha Campos ,  Eduardo Arias ,  Sebastian Pablo Cufre ,  Axel Elian Brzostowski

发明人： Alberto Gustavo Solino Testa ,  Gerardo Gabriel Richarte ,  Fernando Federico Russ ,  Diego Martin Kelyacoubian ,  Ariel Futoransky ,  Diego Bartolome Tiscornia ,  Ariel Waissbein ,  Hector Adrian Manrique ,  Javier Ricardo De Acha Campos ,  Eduardo Arias ,  Sebastian Pablo Cufre ,  Axel Elian Brzostowski

IPC分类号： G06F12/14

CPC分类号： G06F21/577

摘要： A system and method provide application penetration testing. The system contains logic configured to find at least one vulnerability in the application so as to gain access to data associated with the application, logic configured to confirm the vulnerability and determine if the application can be compromised, and logic configured to compromise and analyze the application by extracting or manipulating data from a database associated with the application. In addition, the method provides for penetration testing of a target by: receiving at least one confirmed vulnerability of the target; receiving a method for compromising the confirmed vulnerability of the target; installing a network agent on the target in accordance with the method, wherein the network agent allows a penetration tester to execute arbitrary operating system commands on the target; and executing the arbitrary operating system commands on the target to analyze risk to which the target may be exposed.

摘要翻译： 系统和方法提供应用程序渗透测试。 该系统包含配置为在应用程序中找到至少一个漏洞的逻辑，以便访问与应用程序相关联的数据，配置为确认漏洞并确定应用程序是否可能受到损害的逻辑，以及配置为妥协和分析应用程序的逻辑 通过从与应用程序相关联的数据库中提取或操纵数据。 此外，该方法通过以下方式提供对目标的渗透测试：接收目标的至少一个确认的脆弱性; 接受破坏目标确认脆弱性的方法; 根据该方法在目标上安装网络代理，其中网络代理允许穿透测试器在目标上执行任意操作系统命令; 并执行目标上的任意操作系统命令来分析目标可能被暴露的风险。

公开(公告)号：US08490196B2

公开(公告)日：2013-07-16

申请号：US12851516

申请日：2010-08-05

申请人： Jorge Lucangeli Obes ,  Carlos Emilio Sarraute Yamada ,  Gerardo Gabriel Richarte

发明人： Jorge Lucangeli Obes ,  Carlos Emilio Sarraute Yamada ,  Gerardo Gabriel Richarte

IPC分类号： G06F11/00 ,  G06F12/14 ,  G06F12/16 ,  G08B23/00

CPC分类号： H04L63/1433 ,  G06F21/577 ,  G06F2221/033 ,  G06F2221/034

摘要： A system and method for extending automated penetration testing of a target network is provided. The method comprises: computing a scenario, comprises the steps of: translating a workspace having at least one target computer in the target network, to a planning definition language, translating penetration modules available in a penetration testing framework to a planning definition language, and defining a goal in the target network and translating the goal into a planning definition language; building a knowledge database with information regarding the target network, properties of hosts in the network, parameters and running history of modules in the penetration testing framework; and running an attack plan solver module, comprising: running an attack planner using the scenario as input, to produce at least one attack plan that achieves the goal, and executing actions defined in the at least one attack plan against the target network from the penetration testing framework.

摘要翻译： 提供了一种用于扩展目标网络的自动渗透测试的系统和方法。 该方法包括：计算场景，包括以下步骤：将具有目标网络中的至少一个目标计算机的工作空间转换为规划定义语言，将穿透测试框架中可用的穿透模块转换为规划定义语言，以及定义 目标网络中的目标，并将目标转化为规划定义语言; 构建知识数据库，提供有关目标网络的信息，网络中主机的属性，渗透测试框架中模块的参数和运行历史; 以及运行攻击计划求解器模块，其包括：使用所述场景作为输入来运行攻击计划器，以产生实现所述目标的至少一个攻击计划，以及针对所述目标网络的所述至少一个攻击计划中定义的所述攻击行为 测试框架。

公开(公告)号：US08490193B2

公开(公告)日：2013-07-16

申请号：US12877815

申请日：2010-09-08

申请人： Carlos Emilio Sarraute Yamada ,  Ariel Futoransky ,  Gerardo Gabriel Richarte ,  Jorge Lucangeli Obes

发明人： Carlos Emilio Sarraute Yamada ,  Ariel Futoransky ,  Gerardo Gabriel Richarte ,  Jorge Lucangeli Obes

IPC分类号： G06F21/00

CPC分类号： H04L41/145 ,  H04L41/0823 ,  H04L43/50 ,  H04L63/1433

摘要： A system and method for automated probabilistic planning of network attacks against infrastructures of computer networks and applications is provided. The embodiments automate the analysis and probabilistic planning of multi-step attacks to computer and application networks (in particular in the context of automating penetration tests), optimizing with respect to one of the following metrics: the probability of success of the actions, a numerical parameter that must be minimized (e.g., running time), or the number of logs generated by the control devices in the target network.

摘要翻译： 提供了针对计算机网络和应用的基础设施的网络攻击的自动概率规划的系统和方法。 这些实施例使对计算机和应用网络的多步骤攻击的分析和概率规划（特别是在自动渗透测试的上下文中）自动化，针对以下度量之一进行优化：动作成功的概率，数值 参数必须最小化（例如，运行时间），或由目标网络中的控制设备生成的日志数。

公开(公告)号：US20110061104A1

公开(公告)日：2011-03-10

申请号：US12877815

申请日：2010-09-08

申请人： Carlos Emilio Sarraute Yamada ,  Ariel Futoransky ,  Gerardo Gabriel Richarte ,  Jorge Lucangeli Obes

发明人： Carlos Emilio Sarraute Yamada ,  Ariel Futoransky ,  Gerardo Gabriel Richarte ,  Jorge Lucangeli Obes

IPC分类号： G06F21/00

CPC分类号： H04L41/145 ,  H04L41/0823 ,  H04L43/50 ,  H04L63/1433

摘要： A system and method for automated probabilistic planning of network attacks against infrastructures of computer networks and applications is provided. The embodiments automate the analysis and probabilistic planning of multi-step attacks to computer and application networks (in particular in the context of automating penetration tests), optimizing with respect to one of the following metrics: the probability of success of the actions, a numerical parameter that must be minimized (e.g., running time), or the number of logs generated by the control devices in the target network.

摘要翻译： 提供了针对计算机网络和应用的基础设施的网络攻击的自动概率规划的系统和方法。 这些实施例使对计算机和应用网络的多步骤攻击的分析和概率规划（特别是在自动渗透测试的上下文中）自动化，针对以下度量之一进行优化：动作成功的概率，数值 参数必须最小化（例如，运行时间），或由目标网络中的控制设备生成的日志数。

公开(公告)号：US20110035803A1

公开(公告)日：2011-02-10

申请号：US12851516

申请日：2010-08-05

申请人： Jorge Lucangeli Obes ,  Carlos Emilio Sarraute Yamada ,  Gerardo Gabriel Richarte

发明人： Jorge Lucangeli Obes ,  Carlos Emilio Sarraute Yamada ,  Gerardo Gabriel Richarte

IPC分类号： G06F11/00

CPC分类号： H04L63/1433 ,  G06F21/577 ,  G06F2221/033 ,  G06F2221/034

摘要： A system and method for extending automated penetration testing of a target network is provided. The method comprises: computing a scenario, comprises the steps of: translating a workspace having at least one target computer in the target network, to a planning definition language, translating penetration modules available in a penetration testing framework to a planning definition language, and defining a goal in the target network and translating the goal into a planning definition language; building a knowledge database with information regarding the target network, properties of hosts in the network, parameters and running history of modules in the penetration testing framework; and running an attack plan solver module, comprising: running an attack planner using the scenario as input, to produce at least one attack plan that achieves the goal, and executing actions defined in the at least one attack plan against the target network from the penetration testing framework.

摘要翻译： 提供了一种用于扩展目标网络的自动渗透测试的系统和方法。 该方法包括：计算场景，包括以下步骤：将具有目标网络中的至少一个目标计算机的工作空间转换为规划定义语言，将穿透测试框架中可用的穿透模块转换为规划定义语言，以及定义 目标网络中的目标，并将目标转化为规划定义语言; 构建知识数据库，提供有关目标网络的信息，网络中主机的属性，渗透测试框架中模块的参数和运行历史; 以及运行攻击计划解算器模块，包括：使用所述场景作为输入来运行攻击计划器，以产生实现所述目标的至少一个攻击计划，以及针对所述目标网络的所述至少一个攻击计划中定义的所述攻击行为 测试框架。