摘要
随着软件开发技术的快速发展,办公网站的结构日趋复杂,办公面临的安全威胁、威胁的主体及其动机和能力、威胁的客体等方面都变得更加复杂和难于控制。应对安全威胁的途径之一就是采用渗透测试的方法模拟黑客的攻击,本文介绍了渗透测试的定义和目的,介绍了渗透测试的类型,分析了渗透测试过程中的风险控制,阐述了渗透测试的一般步骤,强调了渗透测试的注意事项,最后,对渗透测试进行了总结。对软件开发者对办公网站进行渗透测试具有较强的指导意义。
Abstract
With the rapid development of the software development technology,office site structure is complicated,the body of the office of the security threats and threats and their motivation and ability in such aspects as the object of threats and become more complicated and difficult to control. One way to deal with security threats is penetration testing methods are adopted to simulate the hacker's attack,the definition and purpose of this paper introduces the penetration testing, this paper introduces the types of penetration testing,penetration testing is analyzed in the process of risk control,this paper expounds the general steps of penetration testing,penetration testing is emphasized considerations,in the end,the penetration test are summarized. For software developers penetration test was carried out on the office website has strong guiding significance.
NETL
NSTL
万方数据