2024年4月16日发(作者:)

摘 要

随着互联网不断发展、贴近生活,电子化的生活安全依赖着网

络安全。在漏洞泛滥的今天,网络安全状态不容乐观,许多机构都

因没有及时处理漏洞导致被恶意入侵,若网络安全保护不当,将会

影响现实安全。中小型网络运维人员常因为外部因素影响难以开展

网络安全行动。为了应对这一问题,本文研究尝试用Python语言尝

试做一个集成漏洞扫描系统的设计与实现。运用以Python为基础的

Django Web框架实现快速的业务开发,运用Docker的轻量级虚拟

化集成Nmap安全工具为方案验证手段,构建一个B/S架构模式,

面向初级运维人员、初级网络安全研究者的低学习成本漏洞扫描系

统平台,方便他们的工作需要。

关键词:Python;Django;Docker;漏洞扫描;系统集成;网络安

全;轻量级

Abstract

With the continuous development of the Internet and its closeness to life,

the safety of electronic life depends on network security. In today's flood of

vulnerabilities, the state of network security is not optimistic. Many

organizations have been maliciously invaded due to failure to deal with

vulnerabilities in time. If the network security is not properly protected, it

will affect actual security. middle and small network operators often find it

difficult to carry out cybersecurity operations due to external factors. In order

to deal with this problem, this paper attempts to use Python programming

language to try to design and implement an integrated vulnerability scanning

system. Django is a high-level Python Web framework to rapid development,

and use Docker's lightweight virtualization integration Nmap security tool as

a means of program verification to build a B / S architecture model for junior

operations and maintenance personnel, junior network security research The

low learning cost vulnerability scanning system platform of the authors is

convenient for their work needs.

Key words: Python;Django;Docker;Vulnerability Scanning;System

Integration;Cybersecurity;Lightweight