METHOD OF CHECKING VULNERABILITY BASED ON HYBRID USING VERIFICATION CODE AND SCRIPT AND APPARATUS USING THE SAME

摘要

A hybrid-based vulnerability inspection method using an inspection code and inspection script and an apparatus using the same are disclosed. A vulnerability inspection method according to the present invention comprises the steps of: forming, by a management server performing security management of a system to be inspected, a plurality of inspection groups for differential policy application; matching, by the management server, a plurality of on/offline agents registered corresponding to the inspection target system to any one of a plurality of inspection groups, respectively; performing, by a plurality of on/offline agents, a vulnerability check by using at least one of a check code and a check script assigned to each matched group; and obtaining, by the management server, a vulnerability check result from a plurality of on/offline agents, and generating a vulnerability check report for the check target system.