Abstract

Network services are processes running on a system with network exposure. A key activity for any network defender, penetration tester, or red team is network attack surface mapping, the act of detecting and categorizing those services through which a threat actor could attempt malicious activity. Many tools have arisen over the years to probe, identify, and classify these services for information and vulnerabilities. In this article, we survey network attack surface mapping by reviewing several prominent tools and their features and then discussing recent works reflecting unique research using those tools. We conclude by covering several promising directions for future research.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Network Attack Surface Simplification for Red and Blue Teams
Douglas Everson ... Long Cheng
-
Douglas Everson, et. al.Douglas Everson ... Long Cheng
01 Sep 2020
HARMer: Cyber-Attacks Automation and Evaluation
Simon Yusuf Enoch ... Dong Seong Kim
IEEE access : practical innovations, open solutions | VOL. 8
Simon Yusuf Enoch, et. al.Simon Yusuf Enoch ... Dong Seong Kim
01 Jan 2020
Red Teams - Pentesters, APTs, or Neither
Ivan Kovacevic ... Stjepan Gros
-
Ivan Kovacevic, et. al.Ivan Kovacevic ... Stjepan Gros
28 Sep 2020
An Automated Post-Exploitation Model for Cyber Red Teaming
Ryan Benito ... Gurminder Singh
International Conference on Cyber Warfare and Security | VOL. 18
Ryan Benito, et. al.Ryan Benito ... Gurminder Singh
28 Feb 2023
View more papers

More From: Digital Threats: Research and Practice

Paper Title
Journal
Date
Author
Does Cyber Insurance promote Cyber Security Best Practice? An Analysis based on Insurance Application Forms
Rodney Adriko ... Jason R.C Nurse
Digital Threats: Research and Practice | VOL. -
Rodney Adriko, et. al.Rodney Adriko ... Jason R.C Nurse
04 Jul 2024
Unveiling Cyber Threat Actors: A Hybrid Deep Learning Approach for Behavior-based Attribution
Emirhan Böge ... Orçun Çetin
Digital Threats: Research and Practice | VOL. -
Emirhan Böge, et. al.Emirhan Böge ... Orçun Çetin
02 Jul 2024
Multi-SpacePhish: Extending the Evasion-space of Adversarial Attacks against Phishing Website Detectors Using Machine Learning
Ying Yuan ... Giovanni Apruzzese
Digital Threats: Research and Practice | VOL. 5
Ying Yuan, et. al.Ying Yuan ... Giovanni Apruzzese
20 Jun 2024
A Machine Learning and Optimization Framework for Efficient Alert Management in a Cybersecurity Operations Center
Jalal Ghadermazi ... Sushil Jajodia
Digital Threats: Research and Practice | VOL. 5
Jalal Ghadermazi, et. al.Jalal Ghadermazi ... Sushil Jajodia
20 Jun 2024
View more papers