zmap research paper

《zmap research paper》由会员上传分享，免费在线阅读，更多相关内容在学术论文-天天文库。

1、ThispaperappearedinProceedingsofthe22ndUSENIXSecuritySymposium,August2013.ZMapsourcecodeanddocumentationareavailablefordownloadathttps://zmap.io/.ZMap:FastInternet-WideScanninganditsSecurityApplicationsZakirDurumericEricWustrowJ.AlexHaldermanUniversityofMichiganUniversityofMichiganUniversityofMi

2、chiganzakir@umich.eduewust@umich.edujhalderm@umich.eduAbstractmid-rangemachinerunningZMapiscapableofscanningforagivenopenportacrosstheentirepublicIPv4addressInternet-widenetworkscanninghasnumeroussecurityspaceinunder45minutes—over97%ofthetheoreti-applications,includingexposingnewvulnerabilitiesa

3、ndcalmaximumspeedofgigabitEthernet—withoutrequir-trackingtheadoptionofdefensivemechanisms,butprob-ingspecializedhardware[11]orkernelmodules[8,28].ingtheentirepublicaddressspacewithexistingtoolsisZMap’smodulararchitecturecansupportmanytypesofbothdifficultandslow.WeintroduceZMap,amodular,single-pac

4、ketprobes,includingTCPSYNscans,ICMPopen-sourcenetworkscannerspecificallyarchitectedtoechorequestscans,andapplication-specificUDPscans,performInternet-widescansandcapableofsurveyinganditcaninterfaceeasilywithuser-providedcodetotheentireIPv4addressspaceinunder45minutesfromperformfollow-upactionsondi

5、scoveredhosts,suchasuserspaceonasinglemachine,approachingthetheo-completingaprotocolhandshake.reticalmaximumspeedofgigabitEthernet.WepresentComparedtoNmap—anexcellentgeneral-purposenet-thescannerarchitecture,experimentallycharacterizeitsworkmappingtool,whichwasutilizedinrecentInternet-performanc

6、eandaccuracy,andexplorethesecurityimpli-widesurveyresearch[10,14]—ZMapachievesmuchcationsofhighspeedInternet-scalenetworksurveys,bothhigherperformanceforInternet-scalescans.Experimen-offensiveanddefensive.Wealsodiscussbestpracticesfortally,wefindthatZMapiscapableofscanningtheIPv4goodInternetcitiz

7、enshipwhenperformingInternet-widepublicaddressspaceover1300timesfasterthanthemostsurveys,informedbyourownexperiencesconductingaaggressiveNmapdefaultsettings,withequivalentaccu-long-termresearchsurveyoverthepastyear.racy.Thes