Vulnerability Assessment in the Cloud
公开In this study, we reassess vulnerability assessment in the Cloud and develop the open-source 'cvaFrame' framework. This framework reports to the cloud administrator, vulnerabilities and exploits discovered in virtual images. Our contribution to the cloud vulnerability assessment research community is our framework. We build our framework on top of existing tools like Metasploit and OpenVAS and implement it in an existing cloud service 'OpenNebula', to prove that our system works. We tested our software in a production cloud and it was able to find vulnerabilities and exploits hiding in dormant virtual machine images. At this date, we believe we are the first to develop an open-source framework that performs vulnerability assessment within the cloud on dormant images.
- This report represents the work of one or more WPI undergraduate students submitted to the faculty as evidence of completion of a degree requirement. WPI routinely publishes these reports on its website without editorial or peer review.
- Creator
- 贡献者
- Publisher
- Identifier
- E-project-042412-130544
- Advisor
- Year
- 2012
- Center
- Date created
- 2012-04-24
- 地点
- Budapest
- Resource type
- Major
- Rights statement
关系
- 属于 Collection:
项目
单件
缩略图 | 标题 | 公开度 | Embargo Release Date | 行动 |
---|---|---|---|---|
|
Vulnerability_Assessment_Within_The_Cloud_MA_AG.pdf | 公开 | 下载 | |
![]() |
cvaFrame.zip | 公开 | 下载 | |
|
MQPFinalPresentation_MA__AG.pdf | 公开 | 下载 |
Permanent link to this page: https://digital.wpi.edu/show/05741t03k