Design And Implementation Of Intranet Security System Based On Flask

The internal network of a company is isolated from the outside world.It is not only the core part of the enterprise,but also the ultimate goal of the hacker attack.The internal network of a company is complex and large,in most cases,there are also many vulnerable points that can be used by intruders,and even can easily bypass the firewall to directly capture the internal network,and ultimately cause the leakage of enterprise data information and business information.How to ensure the security of internal corporate assets is to find vulnerability in the internal assets of the company and immediately give repair solutions to prevent problems.The company is eager to develop a security system for secure patrolling of the intranet to ensure the security of the intranet assets.Under this background,the enterprise intranet security system emerged as the times require.It provides an excellent solution to solve the above problems and the problem of intranet security in real time and efficiently.The project of this article comes from the project of the author's internship of Jingdong Information Security Department.The system collects most of the vulnerability disclosed on the Internet and stores them in its own vulnerability database.This can be used to detect vulnerability of the entire enterprise's internal assets based on the vulnerability database and generate a vulnerability remediation plan.Its development language is Python,the back-end framework uses the web lightweight framework Flask,the database uses MongoDB,and the server uses the more commonly used lightweight server Nginx.In this project,a total of user management module,vulnerability database management module,host security module,web security module,cloud host security module,terminal security module six modules.Among them,the author is mainly responsible for five modules:the vulnerability database management module,the host security module,the web security module,the cloud host security module,and the terminal security module.The host security module and web security module are important modules of the system.Functions such as host port identification,web fingerprinting,and vulnerability detection are included.The system has been tested internally by Jingdong Information Security Department.Other functions will gradually increase in the later stages.The system effectively manages and protects the security of the company's intranet,and also improves the efficiency of the security department.