Research, Network Security Detection System Based On Simulation Training Environment

With the rapid development of higher education and the continuous deepening of reform of the education system, the traditional school environment Training has been unable to meet the needs of new development, the construction of a school in the Training simulation environment that enables computer network related professional students in the network security Training simulation environment in practice teaching, research security systems, has become one of the urgent need to resolve the issue.In this paper the development of network security detection system the whole process of the main vein, together with stylized icons, based on Training Simulation Environment network security detection system design and the realization of the process. Papers include simulation analysis of the needs of enterprise networks, network protection programme design, testing tools and the realization of the loopholes of three parts. System design is based on Network Simulation Training environment, simulating an enterprise-class network environment, in this environment for enterprise-class security protection and the development of security detection system, the system uses the ASP scripting language development tools, according to SQL injection attack the principle of the design of a loophole used to detect injection tools and simulation environment Training tested successfully. The system includes scanning registration injection analysis, the High command, directory traversal, file uploads, background scanning, system settings seven modules, with access to information, data, functional testing loopholes. In the text of the SQL injection attacks done a detailed analysis of the development and integration of software engineering ideas, focuses on a scripting language based on ASP detection tools to achieve security process. The use of this system, so that we do not detect security flaws of the traditional detection methods, but in the perspective of an intruder on the simulation business website launched SQL injection attacks, identify potential safety problems. To ensure safety, the design of the system is independent myself in order to ensure that the original source code and confidentiality.