Please use this identifier to cite or link to this item: https://hdl.handle.net/20.500.11851/8607
Full metadata record
DC FieldValueLanguage
dc.contributor.authorMalkawi M.-
dc.contributor.authorÖzyer T.-
dc.contributor.authorAlhajj R.-
dc.date.accessioned2022-07-30T16:41:54Z-
dc.date.available2022-07-30T16:41:54Z-
dc.date.issued2021-
dc.identifier.citationMalkawi, M., Özyer, T., & Alhajj, R. (2021, November). Automation of active reconnaissance phase: an automated API-based port and vulnerability scanner. In Proceedings of the 2021 IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining (pp. 622-629).en_US
dc.identifier.isbn9781450391283-
dc.identifier.urihttps://doi.org/10.1145/3487351.3492720-
dc.identifier.urihttps://hdl.handle.net/20.500.11851/8607-
dc.descriptionACM Special Interest Group on Knowledge Discovery in Data (SIGKDD);Elsevier;IEEE Computer Society;IEEE TCDE;Springeren_US
dc.description13th IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining, ASONAM 2021 -- 8 November 2021 -- 176732en_US
dc.description.abstractThe unprecedented growth in technology has increased the importance of the required information security that is still hard to be reached. Recently, network and web application attacks have occurred frequently, causing confidential data to be stolen by the available vulnerabilities in the systems and the most prominent is in the form of open ports. This causes the CIA (Confidentiality Integrity and Availability) Triad Model to break. Penetration testing is one of the key techniques used in real life to accurately detect the possible threats and potential attacks against the system, and the first step for hackers to conduct attacks is information collection. In this paper, we present a useful schema for the active information-gathering phase that can be used during penetration testing and by system administrators. It will be the first feature of a security engine going to be implemented. The work involves an automated API-based IP and port scanner, service-version enumerator, and vulnerability detection system. This scheme is based on the Network Mapper (Nmap) to collect the information with high accuracy depending on the provided rules in our schema. Besides, the work has been implemented as a RESTful-API server, aiming at easy integration for real-life cases and allowing administrators to scan and secure their networks more quickly and easily. The effectiveness and efficiency of this technique has been proved by the various test cases applied considering different scenarios from the real world. The average time of scanning a server and detecting the vulnerabilities is 2.2 minutes. Regardless of the number of vulnerabilities, the increase in time for each open port is just about 12 seconds. © 2021 ACM.en_US
dc.language.isoenen_US
dc.publisherAssociation for Computing Machinery, Incen_US
dc.relation.ispartofProceedings of the 2021 IEEE/ACM International Conference on Advances in Social Networks Analysis and Mining, ASONAM 2021en_US
dc.rightsinfo:eu-repo/semantics/closedAccessen_US
dc.subjectAPIen_US
dc.subjectcyber reconnaissanceen_US
dc.subjectinformation securityen_US
dc.subjectNmapen_US
dc.subjectpenetration testingen_US
dc.subjectport scanneren_US
dc.subjectsecurity vulnerabilitiesen_US
dc.subjectvulnerability assessmenten_US
dc.subjectApplication programming interfaces (API)en_US
dc.subjectCybersecurityen_US
dc.subjectNetwork securityen_US
dc.subjectPersonal computingen_US
dc.subjectScanningen_US
dc.subjectAPIen_US
dc.subjectCybe reconnaissanceen_US
dc.subjectNetwork applicationsen_US
dc.subjectNetwork mapperen_US
dc.subjectPenetration testingen_US
dc.subjectPort scanneren_US
dc.subjectSecurity vulnerabilitiesen_US
dc.subjectVulnerability assessmentsen_US
dc.subjectVulnerability scanneren_US
dc.subjectWeb application attacksen_US
dc.subjectAutomationen_US
dc.titleAutomation of Active Reconnaissance Phase: an Automated Api-Based Port and Vulnerability Scanneren_US
dc.typeConference Objecten_US
dc.departmentFakülteler, Mühendislik Fakültesi, Bilgisayar Mühendisliği Bölümüen_US
dc.departmentFaculties, Faculty of Engineering, Department of Computer Engineeringen_US
dc.identifier.startpage622en_US
dc.identifier.endpage629en_US
dc.identifier.scopus2-s2.0-85124417139en_US
dc.institutionauthorÖzyer, Tansel-
dc.identifier.doi10.1145/3487351.3492720-
dc.authorscopusid57447908100-
dc.authorscopusid8914139000-
dc.authorscopusid7004187647-
dc.relation.publicationcategoryKonferans Öğesi - Uluslararası - Kurum Öğretim Elemanıen_US
item.openairetypeConference Object-
item.languageiso639-1en-
item.grantfulltextnone-
item.fulltextNo Fulltext-
item.openairecristypehttp://purl.org/coar/resource_type/c_18cf-
item.cerifentitytypePublications-
Appears in Collections:Bilgisayar Mühendisliği Bölümü / Department of Computer Engineering
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
Show simple item record



CORE Recommender

Page view(s)

42
checked on Dec 16, 2024

Google ScholarTM

Check




Altmetric


Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.