Abstract: After researching a variety of attack graphs generation methods, this paper proposes a related algorithm based on privilege escalation, and designs an effective tool to generate attack graphs. This tool describes network attack model in database language, which including 3 attributes that is host description, network connectivity and exploit rule, and stores network configurations and host information into database automatically. Attack affair graph is generated according to the dependency algorithm that integrates the breadth-first forward exploration and the backward. The attack graph can achieve the whole analysis of network security.

Key words: network security analysis, attack graphs model, attack affair dependency graph, privilege escalation

摘要： 研究已有攻击图生成方法，提出基于权限提升的攻击图关联算法，实现一种有效的网络攻击图自动生成工具。该工具利用数据库对网络攻击进行建模，包括主机描述、网络连接、利用规则3个属性，自动将网络配置和主机信息写入数据库，根据广度优先前向和后向搜索相结合的关联算法生成攻击事件图，实现网络安全的整体分析。

关键词: 网络安全分析, 攻击图模型, 攻击事件关联图, 权限提升

CLC Number: 

• TP393.08