CYBER ATTACK SYSTEM FOR VULNERABILITY ASSESSMENT AND METHOD THEREOF

摘要

A cyber attack system and method for vulnerability assessment are provided to analyze attack pattern and characteristic of an actual cyber attacker to design a cyber attack and simulate the cyber attack on a network so as to detect vulnerability in the network or a system. A cyber attack system for vulnerability assessment includes an attack agent(10), an attack controller(20), an information collecting agent(30), an information analyzer(40), and a cyber attack manager(50). The attack agent performs a cyber attack for detecting and assessing vulnerability. The attack controller sets an attack object, manages information required for the attack and controls the attack at the request of the attack agent. The information collecting agent collects information on an attack target to achieve the attack object. The information analyzer analyzes the information on the attack target. The cyber attack manager selects a main attack point by using the analyzed information and creates an attack scenario.