Autorat: automated risk assessment tool for network mapper scanning

Name: Atit Sethapanee

Organization : Thammasat University. Sirindhorn International Institute of Technology

Email : 6122780271@siit.tu.ac.th

Name: Tanakorn Nimitrchai

Organization : Thammasat University. Sirindhorn International Institute of Technology

Name: Somchart Fugkeaw

Organization : Thammasat University. Sirindhorn International Institute of Technology

Email : somchart@siit.tu.ac.th

keyword: Network Mapper Tool

LCSH: Risk assessment

; Vulnerability Scoring System

LCSH: Penetration testing (Computer security)

Abstract: Network vulnerability discovery can generally be done using vulnerability scanning tools that are able to identify possible threats or flaws of network services, ports, devices, protocols, operating systems, and software connected to a network. Most existing tools give a list of vulnerabilities on network-related services and they are used in another stage of the analysis such as risk assessment, penetration test, and re-programming. However, the automatic compilation of the detected vulnerabilities into the risk assessment is crucial for timely risk mitigation and optimized penetration test process. This paper proposes a design and implementation of a risk assessment tool called Auto-RAT which delivers an automatic risk assessment from Nmap, a network enumeration tool supporting the penetration test process. To enable the usability and immediate risk analysis of the Nmap, Auto-RAT is designed to realize the process of Nmap and its result for the automatic compilation into the risk assessment engine. We propose a set of algorithms to convert Nmap scan results into risk assessment model where the risk scoring is calculated using the Common Vulnerability Scoring System (CVSS). Finally, the system generates final risk assessment score and possible risk mitigation strategies for the system evaluation.We run the simulation by comparing the overlapped results between our AutoRAT and Nessus scan result to demonstrate that AutoRAT can effectively reduce the set of vulnerabilities that will be executed in the penetration test process.

King Mongkut's University of Technology North Bangkok. Central Library

Address: BANGKOK

Email: library@kmutnb.ac.th

Created: 2022

Modified: 2022-12-27

Issued: 2022-12-27

บทความ/Article

application/pdf

BibliograpyCitation : In King Mongkut's University of Technology North Bangkok. Faculty of Information Technology. The 18th International Conference on Computing and Information Technology (IC2IT 2022) (pp.99-110). Cham, Switzerland : Springer

eng

©copyrights King Mongkut's University of Technology North Bangkok

ลำดับที่.	ชื่อแฟ้มข้อมูล	ขนาดแฟ้มข้อมูล	จำนวนเข้าถึง	วัน-เวลาเข้าถึงล่าสุด
1	IC2IT 2022pp.99-110.pdf	1.45 MB

ใช้เวลา

0.022393 วินาที