Automated Penetration Analysis and Reporting Tool (APART)
Penetration testing takes time, because a series of varying tools are required and each tool generates a result which must be individually analyzed. The Penetration Application for Analyzing Data networks (PAAD) succeeded in creating an automated penetration testing tool but is lacking in its abilit...
Saved in:
| Main Author: | |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Animo Repository
2014
|
| Subjects: | |
| Online Access: | https://animorepository.dlsu.edu.ph/etd_bachelors/2634 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | De La Salle University |
| Language: | English |
| id |
oai:animorepository.dlsu.edu.ph:etd_bachelors-3634 |
|---|---|
| record_format |
eprints |
| spelling |
oai:animorepository.dlsu.edu.ph:etd_bachelors-36342021-06-15T07:46:30Z Automated Penetration Analysis and Reporting Tool (APART) Ortiz, Joaquin Nicolas. Penetration testing takes time, because a series of varying tools are required and each tool generates a result which must be individually analyzed. The Penetration Application for Analyzing Data networks (PAAD) succeeded in creating an automated penetration testing tool but is lacking in its ability to run reliable penetration tests and to create reliable reports. PAAD inadequacy is due to its dependency on the user to add entries in its database which directly affects the number of vulnerabilities found by the application and the overall credibility of the report. The Automated Penetration Analysis and Reporting Tool (APART) aims to create an improved automated penetration testing tool by running standard penetration testing methods in a logical sequence. The CVE will be used as a common identifier for known security vulnerabilities and CVSS will be used for calculating the security risk of vulnerabilities. The reporting engine uses the data which was retrieved from the sequential penetration tests in order to form a penetration test report with a security risk rating and recommendations on how to mitigate the security vulnerabilities present in the system. Conclusively, this research has met its objective by successfully creating an automated penetration resting took which is capable of integrating additional penetration testing tools in the penetration testing process, as well as supplementing and analyzing the data of the penetration testing tools in order to create information to be used in a comprehensive report. 2014-01-01T08:00:00Z text https://animorepository.dlsu.edu.ph/etd_bachelors/2634 Bachelor's Theses English Animo Repository Computer Sciences |
| institution |
De La Salle University |
| building |
De La Salle University Library |
| continent |
Asia |
| country |
Philippines Philippines |
| content_provider |
De La Salle University Library |
| collection |
DLSU Institutional Repository |
| language |
English |
| topic |
Computer Sciences |
| spellingShingle |
Computer Sciences Ortiz, Joaquin Nicolas. Automated Penetration Analysis and Reporting Tool (APART) |
| description |
Penetration testing takes time, because a series of varying tools are required and each tool generates a result which must be individually analyzed. The Penetration Application for Analyzing Data networks (PAAD) succeeded in creating an automated penetration testing tool but is lacking in its ability to run reliable penetration tests and to create reliable reports. PAAD inadequacy is due to its dependency on the user to add entries in its database which directly affects the number of vulnerabilities found by the application and the overall credibility of the report. The Automated Penetration Analysis and Reporting Tool (APART) aims to create an improved automated penetration testing tool by running standard penetration testing methods in a logical sequence. The CVE will be used as a common identifier for known security vulnerabilities and CVSS will be used for calculating the security risk of vulnerabilities. The reporting engine uses the data which was retrieved from the sequential penetration tests in order to form a penetration test report with a security risk rating and recommendations on how to mitigate the security vulnerabilities present in the system. Conclusively, this research has met its objective by successfully creating an automated penetration resting took which is capable of integrating additional penetration testing tools in the penetration testing process, as well as supplementing and analyzing the data of the penetration testing tools in order to create information to be used in a comprehensive report. |
| format |
text |
| author |
Ortiz, Joaquin Nicolas. |
| author_facet |
Ortiz, Joaquin Nicolas. |
| author_sort |
Ortiz, Joaquin Nicolas. |
| title |
Automated Penetration Analysis and Reporting Tool (APART) |
| title_short |
Automated Penetration Analysis and Reporting Tool (APART) |
| title_full |
Automated Penetration Analysis and Reporting Tool (APART) |
| title_fullStr |
Automated Penetration Analysis and Reporting Tool (APART) |
| title_full_unstemmed |
Automated Penetration Analysis and Reporting Tool (APART) |
| title_sort |
automated penetration analysis and reporting tool (apart) |
| publisher |
Animo Repository |
| publishDate |
2014 |
| url |
https://animorepository.dlsu.edu.ph/etd_bachelors/2634 |
| _version_ |
1712575935284248576 |