SYSTEM AND METHOD FOR NETWORK VULNERABILITY DETECTION AND REPORTING
0 Assignments
0 Petitions
Accused Products
Abstract
A system and method provide comprehensive and highly automated testing of vulnerabilities to intrusion on a target network, including identification of operating system, identification of target network topology and target computers, identification of open target ports, assessment of vulnerabilities on target ports, active assessment of vulnerabilities based on information acquired from target computers, quantitative assessment of target network security and vulnerability, and hierarchical graphical representation of the target network, target computers, and vulnerabilities in a test report. The system and method employ minimally obtrusive techniques to avoid interference with or damage to the target network during or after testing.
-
Citations
32 Claims
-
1-11. -11. (canceled)
-
12. A method comprising:
-
identifying a set of responsive computer devices in a plurality of computer devices in a network; performing, for each computer device in the set of responsive computer devices, an ICMP traceroute between a particular system connected to the network and the respective computer device in the set of responsive computer devices; determining, for each responsive computer device, from echo reply packets returned from the corresponding ICMP traceroute, a respective number of hops between the respective computer device and the particular system; and determining a topology of the network including at least the set of responsive computer devices. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. Logic encoded in non-transitory media that includes code for execution and when executed by a processor is operable to perform operations comprising:
-
identifying a set of responsive computer devices in a plurality of computer devices in a network; performing, for each computer device in the set of responsive computer devices, an ICMP traceroute between a particular system connected to the network and the respective computer device in the set of responsive computer devices; determining, for each responsive computer device, from echo reply packets returned from the corresponding ICMP traceroute, a respective number of hops between the respective computer device and the particular system; and determining a topology of the network including at least the set of responsive computer devices.
-
-
30. A system comprising:
-
at least one processor device; at least one memory element; and a network mapping engine, adapted when executed by the at least one processor device to; identifying a set of responsive computer devices in a plurality of computer devices in a network; performing, for each computer device in the set of responsive computer devices, an ICMP traceroute between a particular system connected to the network and the respective computer device in the set of responsive computer devices; determining, for each responsive computer device, from echo reply packets returned from the corresponding ICMP traceroute, a respective number of hops between the respective computer device and the particular system; and determining a topology of the network including at least the set of responsive computer devices. - View Dependent Claims (31, 32)
-
Specification