Research on Vulnerability Utilization Tool Development Framework

doi:10.3969/j.issn.1000-3428.2018.03.022

Abstract

Abstract: At present,the number of binary vulnerabilities supported by existing vulnerability utilization platforms is not much,and the flexibility and development efficiency of these platforms is low.There are few utilization tool R & D and generation systems specifically for binary vulnerabilities.Therefore,this paper presents a new automatic generation framework for binary vulnerability exploit tool.The framework modularizes the exploit process.The development and automation of vulnerability utilization tools are quickly and flexibly generated through a variety of modular combinations.According to the different characteristics of each module,different design is used to achieve a shorter development cycle and higher development efficiency.Experimental results show that the framework is simple and easy to use,with high flexibility and extensibility.

Key words: vulnerability utilization, binary vulnerability, modularization, shellcode module, development framework

摘要： 目前已有的漏洞利用平台支持的二进制漏洞种类不多,并且这些平台的灵活性和开发效率较低,缺少专门针对二进制漏洞利用工具的研发和生成系统。为此,提出一种新的二进制漏洞利用工具自动化生成框架。把漏洞利用过程模块化,通过多种模块组合的方式快速灵活地进行漏洞利用工具的研发和自动化生成。针对每个模块的不同特点,采用不同的设计方案,以实现更短的开发周期和更高的开发效率。实验结果表明,该框架简单易用,具有较高的灵活性和扩展性。

关键词: 漏洞利用, 二进制漏洞, 模块化, shellcode模块, 研发框架

CLC Number:

TP393.08

WANG Yan,LIU Jiayong,LIU Liang,JIA Peng,LIU Luping. Research on Vulnerability Utilization Tool Development Framework[J]. Computer Engineering, doi: 10.3969/j.issn.1000-3428.2018.03.022.

王炎,刘嘉勇,刘亮,贾鹏,刘露平. 漏洞利用工具研发框架研究[J]. 计算机工程, doi: 10.3969/j.issn.1000-3428.2018.03.022.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2018.03.022

http://www.ecice06.com/EN/Y2018/V44/I3/127

References

参考文献［1］Common Vulnerabilities and Exposures［EB/OL］.［2017-02-20］.https://cve.mitre.org. ［2］National Vulnerability Database［EB/OL］.［2017-02-20］.https://nvd.nist.gov. ［3］Open Sourced Vulnerability Database［EB/OL］.［2017-02-20］.https://blog.osvdb.org. ［4］China National Vulnerability Database［EB/OL］.［2017-02-20］.http://www.cnvd.org.cn. ［5］YOUNIS A,MALAIYA Y,ANDERSON C,et al.To Fear or Not to Fear That is the Question:Code Characteristics of a Vulnerable Function with an Existing Exploit［C］//Proceedings of the 6th ACM Conference on Data and Application Security and Privacy.New York,USA:ACM Press,2016:97-104. ［6］Kennedy D,GORMAN J O,KEARNS D,et al.Metasploit渗透测试指南［M］.北京:电子工业出版社,2012. ［7］Metasploit［EB/OL］.［2017-02-20］.hhttp://www.metasploit.com. ［8］Core Security［EB/OL］.［2017-02-20］.http://www.coresecurity.com. ［9］Immunity Canvas［EB/OL］［2017-02-20］.http://www.immunitysec.com. ［10］ERMAKOVM K.Dynamic Analysis of ARM ELF Executable Code Using Static Binary Instrumentation［J］.Institute for System Programming,2016,236(1):108-117. ［11］HOLZMANN G J.Cobra:A Light-weight Tool for Static and Dynamic Program Analysis［J］.Innovations in Systems and Software Engineering,2016:13(1):1-15. ［12］GUO Hui,WANG Yongyi,PAN Zulie,et al.Research on Detecting Windows Vulnerabilities Based on Security Patch Comparison［C］//Proceedings of the 6th International Conference on Instrumentation & Measurement.Washington D.C.,USA:IEEE Press,2016:366-369. ［13］王清.ODAY安全:软件漏洞分析技术［M］.北京:电子工业出版社,2011. ［14］SHOSHITAISHVILI Y,WANG R,SALLS C,et al.SOK:(State of) The Art of War:Offensive Techniques in Binary Analysis［C］//Proceedings of IEEE Symposium on Security and Privacy.Washington D.C.,USA:IEEE Press,2016:138-157. ［15］王颖,李祥和,关龙,等.shellcode攻击与防范技术［J］.计算机工程,2010,36(18):163-165. ［16］NMETH Z L,ERDDI L.When Every Byte Counts——Writing Minimal Length Shellcodes［C］//Proceedings of the 13th International Symposium on Intelligent Systems and Informatics.Washington D.C.,USA:IEEE Press,2015:269-274. ［17］NAGPAL B,CHAUHAN N,SINGH N.A Substitution Based Encoding Scheme to Mitigate Cross Site Script Vulnerabilities［J］.Journal on Information Technology,2015,5(1):12. ［18］王奕森,舒辉,谢耀滨,等.基于指令集随机化的代码注入型攻击防御技术［J］.计算机应用与软件,2016,33(5):312-316. ［19］苟孟洛.纯字母数字Shellcode加密技术的分析与实现［J］.计算机安全,2013(8):71-73. 编辑顾逸斐

[1]	JIANG Zong-Hua, XU Yong. Tableau Algorithm of Modular Ontology and Its Performance Optimization [J]. Computer Engineering, 2012, 38(13): 289-292.
[2]	LOU Li, XU Cheng, WANG Yong-Juan, ZHANG Fei-Meng. Networked Rapid Design for Automatic Weapons Based on Generalized Module Library [J]. Computer Engineering, 2011, 37(8): 268-270.
[3]	LIU Dong, GENG Wei-Yan, DIAO Zhong-Wen, WANG Zhi-An. Modularization Method for Cut Sequence Set Analysis of Dynamic Fault Tree [J]. Computer Engineering, 2011, 37(7): 10-11,20.
[4]	LIANG Shuai, LUO Jiang-Yi, BI Cheng, HUANG Tian-Hong. Research of Ontology Modular Partition Based on Structure Characteristics Quantitation [J]. Computer Engineering, 2011, 37(14): 5-8.
[5]	ZHOU Wei; SHI Jun-ling; XU Gang; YE Dan. Design and Implementation of Foundational Development Framework for JCA Adapter [J]. Computer Engineering, 2010, 36(8): 258-260.
[6]	YAN Ling-wei; ZHANG Shan-cong;. Design of Reconfigurable Simulation Test System for Satellite Attitude Control [J]. Computer Engineering, 2010, 36(8): 236-238.
[7]	LI Pu, SHI Ya-Xian, JIANG Yun-Cheng. Tourism Domain Ontology Construction Based on ?-Connections [J]. Computer Engineering, 2010, 36(22): 274-276.
[8]	WEI Shen; ZHONG Xiao-qiang; CHEN Kai; ZHU Chang-an. Rapid Design of Metalforming Machines’ Assembly Model Based on Pro/Toolkit [J]. Computer Engineering, 2008, 34(21): 239-241.
[9]	ZHAN Yong-song; LO Siu-ming. Computer Aided Large-scale Crowd Evacuation Platform [J]. Computer Engineering, 2008, 34(20): 77-79.

Please choose a citation manager

Content to export