Non-intrusive Techniques for Vulnerability Assessment of Services in Distributed Systems

Abstract

In this paper we propose an approach for non-intrusive, automated vulnerability assessment of services in distributed systems. Most of existing vulnerability assessment techniques rely on active testing, part of penetration-testing (pen-testing) programs, which assume a series of scanning, probing and exploitation techniques in order to identify possible system vulnerabilities. These approaches are considered highly effective in identifying possible vulnerable points in the network. However, their use is not always possible and recommended for testing on-line, mission-critical services. Therefore, this paper proposes an approach that combines the non-intrusive capabilities of Shodan tool with well-established vulnerability databases (National Vulnerability Database – NVD). The result is a comprehensive approach for non-intrusive vulnerability assessment of Internet-facing services, where hosts and services are interrogated from Shodan search engine and possible vulnerabilities and metrics are automatically extracted from National Vulnerability Database.