Ανάλυση και δημιουργία εργαλείου ελέγχου ασφάλειας
Analysis and creation of a security audit tool
KeywordsΔιαδικτυακή εφαρμογή ; Έλεγχος ; Ασφάλεια πληροφοριακών συστημάτων ; Σάρωση δικτύων ; Ασφάλεια δικτύου
In this dissertation paper, the processes of scanning and auditing an organization’s/company’s network. The paper has been split into two parts the theoretical background, and the execution details. In the theoretical background, the definitions of network security are presented, along with the methods of Risk Analysis and a presentation of the available network security and auditing measures. Furthermore, some possible improvements are detected to the existing scanning systems, that could be used in a new web scanning system application. Later in the execution details, the technical implementation of the Web scanning system is presented, created Using the existing Nmap tool as a base. New features have been implemented in the Web application, such as the use of scanning history through a database system, easy and simple search in scanning history and the presentation of scanning results. Finally, scanning results are compared by the application and are presented to the user in a report.