CN101488890A - Method and system for network attack test - Google Patents

Abstract

Translated fromChinese

本发明实施例公开了一种网络攻击测试的方法和系统，其中，该系统包括主控端和多个代理端，主控端用于创建测试命令，将所述测试命令发送给所述多个代理端，并对所述多个代理端发送的攻击测试结果进行分析；代理端用于接收所述测试命令，根据所述测试命令向被测设备发攻击报文，将攻击测试结果发送给所述主控端。当多个代理端同时向被测设备发送攻击报文时，能够达到足够的攻击报文压力，进而提高了网络攻击测试的质量。

The embodiment of the present invention discloses a method and system for network attack testing, wherein the system includes a main control terminal and multiple agent ends, the main control terminal is used to create a test command, and send the test command to the multiple agent, and analyze the attack test results sent by the multiple agents; the agent is used to receive the test command, send an attack message to the device under test according to the test command, and send the attack test result to all Describe the main control terminal. When multiple agents send attack packets to the device under test at the same time, sufficient attack packet pressure can be achieved, thereby improving the quality of network attack testing.

Description

Translated fromChinese

网络攻击测试的方法和系统Method and system for network attack testing

技术领域technical field

本发明涉及计算机网络安全领域，特别是涉及一种网络攻击测试的方法和系统。The invention relates to the field of computer network security, in particular to a method and system for network attack testing.

背景技术Background technique

目前，随着Internet的日益普及，它已经渗透到日常生活的各个方面，由此引入的网络安全问题也日渐成为人们重点关注的问题。当前的网络攻击方式呈现多样化和复杂化的趋势，使得基于Internet进行业务的机构和系统面临着前所未有的威胁，这些机构和系统一旦被攻击成功，将造成巨大的经济损失。因此，在网络设备或系统实际上线前，对其进行网络攻击测试，来评估网络设备或系统的安全系数，以防止网络设备或系统当被攻击报文进行攻击时由于安全系数低而瘫痪，即网络攻击测试是保证网络设备或系统安全运行的前提。At present, with the increasing popularity of the Internet, it has penetrated into every aspect of daily life, and the network security issues introduced by it have gradually become the focus of people's attention. The current network attack methods are showing a trend of diversification and complexity, making organizations and systems that conduct business based on the Internet face unprecedented threats. Once these organizations and systems are successfully attacked, huge economic losses will be caused. Therefore, before the network device or system is actually online, conduct a network attack test to evaluate the safety factor of the network device or system, so as to prevent the network device or system from being paralyzed due to the low safety factor when the attack message is attacked, that is, Network attack testing is a prerequisite to ensure the safe operation of network equipment or systems.

当前对网络设备进行攻击测试的主要方法是基于网络攻击方式的原理开发出相应的网络攻击工具，攻击者基于网络攻击工具对被测设备发送攻击报文以实现攻击测试。其中，特别针对拒绝服务攻击方式，这种攻击方式需要攻击者向被测设备发送大量的攻击报文才能够完成攻击测试。The current main method of attack testing network devices is to develop corresponding network attack tools based on the principle of network attack methods, and the attacker sends attack packets to the device under test based on the network attack tools to implement attack testing. Among them, especially for the denial of service attack method, this attack method requires the attacker to send a large number of attack packets to the device under test to complete the attack test.

但是，在现有技术中，当对被测设备进行拒绝服务攻击测试时，只由作为攻击者的主机对被测设备发送攻击报文，由于主机所发送的攻击报文的压力有限，通常并不能够达到足够的攻击报文压力，因此，也就影响了网络攻击测试的质量。However, in the prior art, when a denial of service attack test is performed on the device under test, only the host as the attacker sends an attack message to the device under test. Since the pressure of the attack message sent by the host is limited, it usually does not Can not achieve sufficient attack packet pressure, therefore, also affects the quality of network attack testing.

发明内容Contents of the invention

本发明的实施例提供了一种网络攻击测试的方法和系统，以提高网络攻击测试的质量。Embodiments of the present invention provide a method and system for network attack testing, so as to improve the quality of network attack testing.

本发明实施例公开了一种网络攻击测试的系统，包括：主控端和多个代理端，其中，所述主控端，用于创建测试命令，将所述测试命令发送给所述多个代理端，并对所述代理端发送的攻击测试结果进行分析；所述多个代理端，用于接收所述测试命令，根据所述测试命令向被测设备发攻击报文以进行攻击测试，将攻击测试结果发送给所述主控端。The embodiment of the present invention discloses a system for network attack testing, including: a main control terminal and multiple agent terminals, wherein the main control terminal is used to create a test command and send the test command to the multiple an agent, and analyze the attack test result sent by the agent; the multiple agents are used to receive the test command, and send an attack message to the device under test according to the test command to perform the attack test, Send the attack test result to the main control terminal.

本发明实施例还公开了一种网络攻击测试的方法，所述方法包括：接收主控端发送的测试命令；将所述测试命令解析为对被测设备的攻击操作；根据所述攻击操作向被测设备发送攻击报文以进行攻击测试；将攻击测试结果发送给主控端，由所述主控端对所述攻击测试结果进行分析。The embodiment of the present invention also discloses a method for network attack testing, the method comprising: receiving a test command sent by the main control terminal; parsing the test command into an attack operation on the device under test; The device under test sends an attack message to perform an attack test; the attack test result is sent to a master control terminal, and the master control terminal analyzes the attack test result.

通过上述方案，提供了一种网络攻击测试的系统，系统中的代理端取代主控端而向被测设备发送攻击报文，当多个代理端同时向被测设备发送攻击报文时，能够达到足够的攻击报文压力，进而提高了网络攻击测试的质量。Through the above scheme, a system for network attack testing is provided. The agent in the system replaces the master control end and sends attack messages to the device under test. When multiple agents send attack messages to the device under test at the same time, it can Reach sufficient attack packet pressure, thereby improving the quality of network attack testing.

附图说明Description of drawings

为了更清楚地说明本发明实施例或现有技术中的技术方案，下面将对实施例或现有技术描述中所需要使用的附图作一简单地介绍，显而易见地，下面描述中的附图仅仅是本发明的一些实施例，对于本领域普通技术人员来讲，在不付出创造性劳动性的前提下，还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention or the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description These are only some embodiments of the present invention, and those skilled in the art can also obtain other drawings based on these drawings without any creative effort.

图1为本发明实施例一揭示的一种网络攻击测试的系统的逻辑示意图；FIG. 1 is a schematic diagram of a network attack testing system disclosed in Embodiment 1 of the present invention;

图2为本发明实施例一中的主控端的结构图；FIG. 2 is a structural diagram of the master control terminal in Embodiment 1 of the present invention;

图3为本发明实施例一中的代理端的结构图；FIG. 3 is a structural diagram of an agent in Embodiment 1 of the present invention;

图4为本发明专用组网模式测试逻辑组网示意图；Fig. 4 is a schematic diagram of the logical networking of the dedicated networking mode test of the present invention;

图5为本发明在线模式测试逻辑组网示意图；Fig. 5 is a schematic diagram of the logical networking of the online mode test of the present invention;

图6为本发明实施例二揭示的一种网络攻击测试的方法的流程图。FIG. 6 is a flowchart of a network attack testing method disclosed in Embodiment 2 of the present invention.

具体实施方式Detailed ways

下面将结合本发明实施例中的附图，对本发明实施例中的技术方案进行清楚、完整地描述，显然，所描述的实施例仅仅是本发明一部分实施例，而不是全部的实施例。基于本发明中的实施例，本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例，都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

实施例一Embodiment one

请参阅图1，图1为本发明实施例一揭示的一种网络攻击测试的系统的逻辑示意图，该系统包括：主控端101和多个代理端102，其中，Please refer to FIG. 1. FIG. 1 is a schematic diagram of a network attack testing system disclosed in Embodiment 1 of the present invention. The system includes: amaster control terminal 101 and a plurality ofagent terminals 102, wherein,

所述主控端101，用于创建测试命令，将所述测试命令发送给所述代理端102，并对所述代理端102发送的攻击测试结果进行分析；Themain control terminal 101 is used to create a test command, send the test command to theagent end 102, and analyze the attack test result sent by theagent end 102;

所述多个代理端102，用于接收所述主控端101发送的测试命令，根据所述测试命令向被测设备发送攻击报文，将攻击测试结果发送给所述主控端101。Themultiple agents 102 are configured to receive a test command sent by themaster control terminal 101 , send an attack message to the device under test according to the test command, and send an attack test result to themaster control terminal 101 .

请参阅图2，图2为本发明实施例一中主控端的结构图，所述主控端101包括：测试命令开发单元201、代理管理单元202、测试命令发送单元203、测试结果接收单元204和测试结果分析单元205，其中，Please refer to Fig. 2, Fig. 2 is the structural diagram of the main control terminal in the embodiment of the present invention one, and describedmain control terminal 101 comprises: test command development unit 201, agent management unit 202, test order sending unit 203, test result receiving unit 204 and test result analysis unit 205, wherein,

测试命令开发单元201，用于根据待实现的网络测试方式的原理，开发与所述待实现的网络攻击方式相对应的测试命令；A test command development unit 201, configured to develop a test command corresponding to the network attack method to be realized according to the principle of the network test method to be realized;

其中，测试命令开发单元201具体可以根据待实现的网络测试方式的原理，开发指定组织结构的测试套件，在所述测试套件中承载有测试命令。其中，测试套件的组织结构包括：测试脚本、配置脚本、支撑脚本和说明文档。所述测试脚本是实现特定攻击方式测试的有序操作步骤的集合；所述配置脚本是提供对测试参数的配置功能，同时提供对被测设备的预配置和去配置功能；所述支撑脚本定义了特定攻击方式测试中的一些公共子过程的命令，该子过程包括：一个攻击方式中的某个子过程的有序操作集、一个攻击交互过程的某个交互片断、某个攻击方式中对报文进行处理的比较复杂的通用算法过程；由所述测试脚本、配置脚本和支撑脚本中命令的集合构成对被测设备进行测试的测试命令，共同完成对被测设备的攻击测试。所述说明文档包括该测试套件的操作手册、攻击原理、攻击步骤以及逻辑组网图等。Specifically, the test command development unit 201 may develop a test suite with a specified organizational structure according to the principle of the network test mode to be implemented, and the test suite carries test commands. Among them, the organizational structure of the test suite includes: test scripts, configuration scripts, supporting scripts and documentation. The test script is a set of orderly operation steps to realize the test of a specific attack mode; the configuration script provides the configuration function of the test parameters, and provides the pre-configuration and de-configuration functions of the device under test; the support script defines The commands of some common sub-processes in the test of a specific attack mode are given. The sub-process includes: an ordered operation set of a certain sub-process in an attack mode, a certain interactive segment of an attack interaction process, and a pair of report A relatively complex general algorithm process for processing the text; the set of commands in the test script, configuration script and support script constitutes a test command for testing the device under test, and jointly completes the attack test on the device under test. The description document includes the operation manual of the test suite, the attack principle, the attack steps, and the logical network diagram.

同时，测试命令开发单元201还可以具有对测试命令的调试功能，能够对测试命令进行调试，并给出详细的错误提示以及初步的错误定位。At the same time, the test command development unit 201 can also have a debugging function for the test command, which can debug the test command and give detailed error prompts and preliminary error location.

所述代理管理单元202，用于连接和释放测试环境下的所述代理端102。The agent management unit 202 is configured to connect and release theagent 102 in the test environment.

其中，当代理管理单元202发现测试环境下的代理端102后，可以自动发现主控端所在局域网中运行的代理端102并与代理端102建立连接，同时也可以通过指定地址来发现任意网络下的代理端并与代理端建立连接。当准备释放某个代理端102时，通过发送点到点的通信报文来实现释放，此后被释放的代理端102还可以重新被其他的主控端使用。Among them, when the agent management unit 202 discovers theagent 102 in the test environment, it can automatically discover theagent 102 running in the local area network where the master control terminal is located and establish a connection with theagent 102. agent and establish a connection with the agent. When preparing to release acertain agent 102, the release is realized by sending a point-to-point communication message, after which the releasedagent 102 can be reused by other masters.

所述测试命令发送单元203，用于将所述测试命令发送给所述代理管理单元202连接的代理端102。The test command sending unit 203 is configured to send the test command to theagent 102 connected to the agent management unit 202 .

所述测试结果接收单元204，用于接收所述代理端102发送的攻击测试结果。The test result receiving unit 204 is configured to receive the attack test result sent by theagent 102 .

其中，测试结果接收单元204接收的攻击测试结果主要包括代理端102的CPU利用率，内存使用率信息等。Wherein, the attack test result received by the test result receiving unit 204 mainly includes CPU utilization rate and memory utilization rate information of theagent terminal 102 .

所述测试结果分析单元205，用于对所述攻击测试结果进行分析。The test result analyzing unit 205 is configured to analyze the attack test result.

其中，当测试结果分析单元205对攻击测试结果进行分析时，可以将攻击测试结果绘制出折线图、饼形图、柱形图等统计图表，以及各相关攻击测试结果间的比较分析图表，找出系统的性能瓶颈点和攻击成功点等信息，最后按照用户的定值要求自动生成测试报告并以报表的形式显示分析结果。Wherein, when the test result analysis unit 205 analyzes the attack test results, the attack test results can be drawn into statistical charts such as line charts, pie charts, and bar charts, as well as comparative analysis charts between the relevant attack test results, to find Finally, according to the user's fixed value requirements, the test report is automatically generated and the analysis results are displayed in the form of a report.

除了包括上述的测试命令开发单元201、代理管理单元202、测试命令发送单元203、测试结果接收单元204和测试结果分析单元205之外，所述主控端101还可以进一步包括：测试结果存储单元206和测试结果处理单元207，其中，测试结果存储单元206，用于存储所述代理端102发送的攻击测试结果；测试结果处理单元207，用于查询和删除所述测试结果存储单元206中的攻击测试结果。In addition to including the above-mentioned test command development unit 201, agent management unit 202, test command sending unit 203, test result receiving unit 204 and test result analysis unit 205, themaster control terminal 101 can further include: a test result storage unit 206 and the test result processing unit 207, wherein, the test result storage unit 206 is used to store the attack test result sent by theagent 102; the test result processing unit 207 is used to query and delete the test result storage unit 206 Attack test results.

或者，所述主控端101还可以进一步包括测试控制单元208，用于向所述代理端102发送测试控制命令，由所述测试控制命令控制所述测试命令的执行。Alternatively, themaster control terminal 101 may further include a test control unit 208, configured to send a test control command to theagent terminal 102, and the execution of the test command is controlled by the test control command.

其中，所述测试控制命令包括：开始测试、暂停测试、恢复测试和停止测试，通过上述测试控制命令控制测试命令的执行。Wherein, the test control command includes: start test, suspend test, resume test and stop test, and the execution of the test command is controlled by the above test control command.

需要说明的是，所述主控端101也可以同时包括测试结果存储单元206、测试结果处理单元207和测试控制单元208。It should be noted that themaster control terminal 101 may also include a test result storage unit 206 , a test result processing unit 207 and a test control unit 208 at the same time.

请参阅图3，图3为本发明实施例一中代理端的结构图，所述代理端102包括：测试命令接收单元301、测试命令解析单元302、攻击测试单元303和测试结果发送单元304，其中，Please refer to Fig. 3, Fig. 3 is the structural diagram of agent end in the embodiment of the present invention one, and describedagent end 102 comprises: test order receiving unit 301, test order parsing unit 302, attack test unit 303 and test result sending unit 304, wherein ,

测试命令接收单元301，用于接收主控端101发送的测试命令；A test command receiving unit 301, configured to receive a test command sent by themaster control terminal 101;

测试命令解析单元302，用于将所述测试命令解析为对被测设备的攻击操作；A test command parsing unit 302, configured to parse the test command into an attack operation on the device under test;

其中，当测试命令开发单元201根据待实现的网络测试方式的原理，开发指定组织结构的测试套件，并由测试命令发送单元203将承载了测试命令的测试套件发送给代理端102后，由代理端102的测试命令解析单元302对测试套件中的测试命令进行解析，得到对被测设备的攻击操作。Wherein, when the test command development unit 201 develops the test suite of the specified organizational structure according to the principle of the network test mode to be realized, and after the test command sending unit 203 sends the test suite carrying the test command to theagent 102, the agent The test command parsing unit 302 of theterminal 102 parses the test commands in the test suite to obtain the attack operation on the device under test.

测试命令解析单元302可以是一个可扩展性的命令式语言解释器，具体可以为TCL(Tool Command Language，工具命令语言)解释器，当然，也可以选用其他解释器。对于一些TCL不能实现的功能，或者为了提高TCL执行效率，用户可以方便扩展一些新命令，TCL的C函数库有清晰的接口而且便于使用，用C语言可以方便的对TCL进行扩展。The test command parsing unit 302 may be an extensible imperative language interpreter, specifically a TCL (Tool Command Language, Tool Command Language) interpreter, of course, other interpreters may also be selected. For some functions that TCL cannot realize, or in order to improve the execution efficiency of TCL, users can easily extend some new commands. The C function library of TCL has a clear interface and is easy to use. It is easy to expand TCL with C language.

攻击测试单元303，用于根据测试命令解析单元302解析的所述攻击操作向被测设备发送攻击报文；An attack test unit 303, configured to send an attack message to the device under test according to the attack operation analyzed by the test command analysis unit 302;

测试结果发送单元304，用于生成攻击测试结果，并向所述主控端101发送攻击测试结果。The test result sending unit 304 is configured to generate an attack test result and send the attack test result to themaster control terminal 101 .

此外，所述代理端102还可以进一步包括：测试控制命令接收单元305和执行控制单元306，其中，测试控制命令接收单元305，用于接收主控端101发送的测试控制命令；执行控制单元306，用于根据所述测试控制命令控制所述测试命令的执行。In addition, theagent 102 may further include: a test control command receiving unit 305 and an execution control unit 306, wherein the test control command receiving unit 305 is used to receive the test control command sent by themaster control terminal 101; the execution control unit 306 , for controlling the execution of the test command according to the test control command.

需要说明的是，所述系统可以支持两种测试组网模式，如图4和5所示，分别为专用组网模式和在线模式。其中，在专用组网模式中，主控端101、代理端102和被测设备通过交换机或者集线器组成专用测试网络，网络设备均可由测试者控制。在在线模式中，主控端101、代理端102和被测设备分布于实际Internet环境中。It should be noted that the system can support two test networking modes, as shown in FIGS. 4 and 5 , which are dedicated networking mode and online mode respectively. Among them, in the dedicated networking mode, themaster control terminal 101, theagent terminal 102 and the equipment under test form a dedicated test network through a switch or a hub, and the network equipment can be controlled by the tester. In the online mode, themaster control terminal 101, theagent terminal 102 and the device under test are distributed in the actual Internet environment.

通过本实施例，提供了一种网络攻击测试的系统，系统中的代理端取代主控端而向被测设备发送攻击报文，当多个代理端同时向被测设备发送攻击报文时，能够达到足够的攻击报文压力，进而提高了网络攻击测试的质量。Through this embodiment, a system of network attack testing is provided. The agent in the system replaces the master control end and sends an attack message to the device under test. When multiple agents send attack messages to the device under test at the same time, Sufficient attack packet pressure can be achieved, thereby improving the quality of network attack testing.

此外，当主控端、代理端和被测设备分布于Internet环境中时，可以由主控端和代理端在线对被测设备进行测试，从而实现在线测试功能。In addition, when the main control terminal, the agent end and the device under test are distributed in the Internet environment, the test device can be tested online by the main control end and the agent end, so as to realize the online test function.

同时，基于命令解释器的测试方式，用户可以方便添加新的测试命令，使平台具有良好的可扩展性。At the same time, based on the test mode of the command interpreter, users can easily add new test commands, which makes the platform have good scalability.

实施例二Embodiment two

请参阅图6，图6为本发明实施二揭示的一种网络攻击测试的方法的流程图，该方法包括以下步骤：Please refer to FIG. 6. FIG. 6 is a flow chart of a method for network attack testing disclosed in the second implementation of the present invention. The method includes the following steps:

步骤601：接收主控端发送的测试命令；Step 601: Receive a test command sent by the master;

需要说明的是，在接收主控端发送的测试命令的同时，还可以接收主控端发送饿测试控制命令，根据所述测试控制命令控制所述测试命令的执行。其中，包括：根据测试控制命令控制所述测试命令开始测试、暂停测试、恢复测试或者停止测试。It should be noted that while receiving the test command sent by the master control terminal, it may also receive a test control command sent by the master control terminal, and control the execution of the test command according to the test control command. Wherein, it includes: controlling the test command to start the test, suspend the test, resume the test or stop the test according to the test control command.

步骤602：将所述测试命令解析为对被测设备的攻击操作；Step 602: Analyzing the test command into an attack operation on the device under test;

步骤603：根据所述攻击操作向被测设备发送攻击报文；Step 603: Send an attack message to the device under test according to the attack operation;

步骤604：将攻击测试结果发送给主控端，由所述主控端对所述攻击测试结果进行分析。Step 604: Send the attack test result to the master control terminal, and the master control terminal analyzes the attack test result.

需要说明的是，当将攻击测试结果发送给主控端后，还可以由主控端存储所述攻击测试结果，并对存储后的攻击测试结果进行查询和删除。It should be noted that, after the attack test results are sent to the control terminal, the control terminal may also store the attack test results, and query and delete the stored attack test results.

通过本实施例，提供了一种网络攻击测试的系统，系统中的代理端取代主控端而向被测设备发送攻击报文，当多个代理端同时向被测设备发送攻击报文时，能够达到足够的攻击报文压力，进而提高了网络攻击测试的质量。Through this embodiment, a system of network attack testing is provided. The agent in the system replaces the master control end and sends an attack message to the device under test. When multiple agents send attack messages to the device under test at the same time, Sufficient attack packet pressure can be achieved, thereby improving the quality of network attack testing.

此外，当主控端、代理端和被测设备分布于Internet环境中时，可以由主控端和代理端在线对被测设备进行测试，从而实现在线测试功能。In addition, when the main control terminal, the agent end and the device under test are distributed in the Internet environment, the test device can be tested online by the main control end and the agent end, so as to realize the online test function.

同时，基于命令解释器的测试方式，用户可以方便添加新的测试命令，使平台具有良好的可扩展性。At the same time, based on the test mode of the command interpreter, users can easily add new test commands, which makes the platform have good scalability.

本领域普通技术人员可以理解实现上述实施例方法中的全部或部分流程，是可以通过计算机程序来指令相关的硬件来完成，所述的程序可存储于一计算机可读取存储介质中，该程序在执行时，可包括如上述各方法的实施例的流程。其中，所述的存储介质可为磁碟、光盘、只读存储记忆体(Read-OnlyMemory，ROM)或随机存储记忆体(Random Access Memory，RAM)等。Those of ordinary skill in the art can understand that all or part of the processes in the methods of the above embodiments can be implemented through computer programs to instruct related hardware, and the programs can be stored in a computer-readable storage medium. During execution, it may include the processes of the embodiments of the above-mentioned methods. Wherein, the storage medium may be a magnetic disk, an optical disk, a read-only memory (Read-Only Memory, ROM) or a random access memory (Random Access Memory, RAM), etc.

以上所述仅是本发明的优选实施方式，应当指出，对于本技术领域的普通技术人员来说，在不脱离本发明原理的前提下，还可以做出若干改进和润饰，这些改进和润饰也应该视为本发明的保护范围。The above is only a preferred embodiment of the present invention, it should be pointed out that, for those of ordinary skill in the art, without departing from the principle of the present invention, some improvements and modifications can also be made, and these improvements and modifications can also be made. It should be regarded as the protection scope of the present invention.

Claims (12)

1, a kind of system of network attack test is characterized in that, described system comprises: main control end and a plurality of agent side, wherein,

Described main control end is used to create test command, and described test command is sent to described a plurality of agent side, and the attack test result that described agent side is sent analyzes;

Described a plurality of agent side is used to receive described test command, sends out attack message to carry out attack test according to described test command to equipment under test, and the attack test result is sent to described main control end.

2, method according to claim 1 is characterized in that, described main control end, agent side and equipment under test are formed the special test network by switch or hub.

3, method according to claim 1 is characterized in that, described main control end, agent side and equipment under test are distributed in the Internet environment.

4, system according to claim 1 is characterized in that, described main control end comprises: test command development block, proxy management unit, test command transmitting element, test result receiving element and test result analysis unit, wherein,

Described test command development block is used for the principle according to network test mode to be achieved, exploitation and the described corresponding test command of network attack mode to be achieved;

Described proxy management unit is used to connect the described agent side under the test environment;

Described test command transmitting element is used for described test command is sent to the agent side that described proxy management unit connects;

Described test result receiving element is used to receive the attack test result that described agent side sends;

Described test result analysis unit is used for described attack test result is analyzed.

5, according to right 4 described systems, it is characterized in that described main control end also comprises: test result memory cell and test result processing unit, wherein,

Described test result memory cell is used to store the attack test result that described agent side sends;

Described test result processing unit is used for inquiring about and deleting the attack test result of described test result memory cell.

6, system according to claim 1 is characterized in that, described agent side comprises: test command receiving element, test command resolution unit, attack test unit and test result transmitting element, wherein,

Described test command receiving element is used to receive the test command that main control end sends;

Described test command resolution unit is used for described test command is resolved to attack operation to equipment under test;

Described attack test unit is used for sending attack message according to described attack operation to equipment under test;

Described test result transmitting element is used to generate the attack test result, and sends described attack test result to described main control end.

7, system according to claim 1 is characterized in that, described main control end also comprises:

Unit of testing and controlling is used for sending the test control command to described agent side, is controlled the execution of described test command by described test control command.

8, system according to claim 7 is characterized in that, described agent side also comprises: test control command receiving element and execution control unit, wherein,

Described test control command receiving element is used to receive the test control command that main control end sends;

Described execution control unit is used for controlling according to described test control command the execution of described test command.

9, a kind of method of network attack test is characterized in that, described method comprises:

Receive the test command that main control end sends;

Described test command is resolved to attack operation to equipment under test;

Send attack message to carry out attack test according to described attack operation to equipment under test;

The result sends to main control end with attack test, by described main control end described attack test result is analyzed.

10, method according to claim 9 is characterized in that, described method also comprises:

Receive the test control command that main control end sends;

Control the execution of described test command according to described test control command.

11, method according to claim 10 is characterized in that, the described execution of controlling described test command according to the test control command comprises:

Controlling described test command according to the test control command begins test, suspends test, recovers test or stops test.

12, method according to claim 9 is characterized in that, described method also comprises:

After the attack test result is sent to main control end, store described attack test result by main control end, and the attack test result after the storage is inquired about and deletes.

Images