本文選題：網(wǎng)絡(luò)爬蟲 + 網(wǎng)絡(luò)漏洞掃描檢測��； 參考：《吉林大學》2014年碩士論文

【摘要】：網(wǎng)絡(luò)漏洞掃描檢測是網(wǎng)絡(luò)安全管理的重要組成部分，是網(wǎng)絡(luò)公司管理的重要環(huán)節(jié)，及時準確的漏洞掃描檢測是網(wǎng)絡(luò)公司安全的重要依據(jù)。隨著計算機網(wǎng)絡(luò)技術(shù)的迅速發(fā)展，很多網(wǎng)絡(luò)公司已經(jīng)擁有自己的網(wǎng)絡(luò)漏洞掃描系統(tǒng)。但是絕大部分系統(tǒng)都掌握在大型公司里面。這些網(wǎng)絡(luò)漏洞掃描系統(tǒng)軟件雖然功能很強大，但是購買使用權(quán)需要昂貴的費用，大部分中小型網(wǎng)絡(luò)公司無法承擔，并且這些軟件使用也很復(fù)雜，因此需要開發(fā)易于操作、價格相對便宜的網(wǎng)絡(luò)漏洞掃描檢測系統(tǒng)。 本文針對大多數(shù)企業(yè)對網(wǎng)絡(luò)監(jiān)控的實際工作需要，開發(fā)了網(wǎng)絡(luò)漏洞掃描檢測系統(tǒng)。論文主要應(yīng)用JAVA語言、J2EE平臺、Servlet技術(shù)、Oracle數(shù)據(jù)庫和嵌入式Web服務(wù)器技術(shù)對本系統(tǒng)進行開發(fā)。通過這些技術(shù)的使用，使得系統(tǒng)的性能有了很大的提高。本系統(tǒng)包括請求掃描調(diào)度模塊、掃描調(diào)度模塊、漏洞掃描管理模塊和信息搜集模塊。其中請求掃描調(diào)度模塊可以實現(xiàn)掃描任務(wù)控制、配置掃描參數(shù)、獲取掃描漏洞、確定掃描任務(wù)以及輸出掃描參數(shù)等5個子功能；掃描調(diào)度模塊可以實現(xiàn)基本信息探測、掃描設(shè)置、端口掃描等3個子功能；漏洞掃描模塊則可以實現(xiàn)FTP漏洞掃描、HTTP漏洞掃描、SQL漏洞掃描、SMTP漏洞掃描等4個子功能；信息搜集模塊中可以實現(xiàn)掃描系統(tǒng)類型、掃描服務(wù)器類型、IP地址及端口號等3個子功能。 網(wǎng)絡(luò)漏洞掃描檢測系統(tǒng)在實際的應(yīng)用測試過程中，達到了測試的要求；并且系統(tǒng)滿足了網(wǎng)絡(luò)公司的現(xiàn)有需求。網(wǎng)絡(luò)漏洞掃描系統(tǒng)具有資源共享、信息快速傳遞、流程規(guī)范化等優(yōu)良特性，在提高工作效率上起到了很大的作用。網(wǎng)絡(luò)漏洞掃描檢測系統(tǒng)的研發(fā)加快了企業(yè)信息化的步伐，，提高了企業(yè)信息化的管理水平，使其在激烈的社會競爭中立于不敗之地。因此，建設(shè)和完善網(wǎng)絡(luò)漏洞掃描檢測系統(tǒng)具有非常重要的實際意義。
[Abstract]:Network vulnerability scanning detection is an important part of network security management. It is an important link of network company management. Timely and accurate detection of vulnerability scanning is an important basis for network company security. With the rapid development of computer network technology, many network companies have own network vulnerability scanning system. But most of them have their own network vulnerability scanning system. The systems are all in large companies. These network vulnerability scanning systems are powerful, but the right to buy and use is expensive, most small and medium-sized network companies are unable to undertake, and these software are also very complex, so it is necessary to develop a network vulnerability scanner that is easy to operate and is relatively cheap. Unification.
This paper develops a network vulnerability scanning and detection system for most enterprises in the actual work of network monitoring. The paper mainly uses JAVA language, J2EE platform, Servlet technology, Oracle database and embedded Web server technology to develop this system. Through the use of these technologies, the system performance has been greatly improved. The system includes the request scan scheduling module, the scanning scheduling module, the vulnerability scanning management module and the information collection module. In this system, the request scan scheduling module can achieve 5 sub functions, such as scanning task control, configuring scanning parameters, obtaining scanning vulnerabilities, determining scanning tasks and output scanning parameters, and so on. This information detection, scanning setup, port scan and other 3 sub functions; vulnerability scanning module can achieve FTP vulnerability scanning, HTTP vulnerability scanning, SQL vulnerability scanning, SMTP vulnerability scanning, and other 4 sub functions; information collection module can realize scanning system type, scanning service type, IP address and port number, and other 3 sub functions.
The network vulnerability scanning detection system has achieved the requirements of the test in the actual application test process, and the system meets the existing requirements of the network company. The network vulnerability scanning system has the excellent characteristics such as resource sharing, rapid transmission of information, process normalization and so on, which has played a great role in improving work efficiency. Network vulnerability scanning is very important. The research and development of the tracing system has accelerated the pace of enterprise informatization, improved the management level of enterprise information, and made it invincible in the fierce social competition. Therefore, it is of great practical significance to build and improve the network vulnerability scanning and detection system.
【學位授予單位】：吉林大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08;TP311.52

【參考文獻】

相關(guān)期刊論文 前2條

1 李盛韜;余智華;程學旗;白碩;;Web信息采集研究進展[J];計算機科學;2003年02期

2 龔平;;用JSP/Servlet實現(xiàn)文件上傳[J];梧州學院學報;2007年03期

本文編號：1972641