| In recent years,software security has become a great problem with the development of software developing caused by great explosion of the information.Although software testing has become an important part of the developing of software,but the software testing now is not able to deal with all problems.That's why we need penetration testing to find the rest.But the penetration testing today is still what they do in the old days,difficult and inefficient.There are a lot of research and learing to find out the well hidden problem.This is not not applicable for the software developing.This article proposed a method based on monte carlo method to optimize the penetration test by investigating and research the basic technologies used in the normal penetration testing.After analyse on normal technologies,buffer overflow is used to build up a model to use the monte carlo method to simulate to detecting buffer overflow problems.Firstly,by finding out the charactors of exploit codes and the basic method of buffer overflow,the core codes of the exploit codes are found out.Secondly,a monte carlo model is built up based on the codes in which way the problem has been turned into a math problem.Finally,simulate a test based on the model with optimized monte carlo method.Then we find a way to find the problems found out by penetation testing with the monte carlo method.This article designed a test based on monte carlo method to optimize the penetration test,and evaluate the method by conduct the creation of exploit codes as well as files and conduct the simulation with monte carlo method.The result of the test proved the method proposed in this article is correct and effective.It's better than the old ways because of its time saving and easy operating. |
PDF Full Text Request