Visible to the public FalconEye: A High-Performance Distributed Security Scanning System

TitleFalconEye: A High-Performance Distributed Security Scanning System
Publication TypeConference Paper
Year of Publication2019
AuthorsWang, Cheng, Liu, Xin, Zhou, Xiaokang, Zhou, Rui, Lv, Dong, lv, Qingquan, Wang, Mingsong, Zhou, Qingguo
Conference Name2019 IEEE Intl Conf on Dependable, Autonomic and Secure Computing, Intl Conf on Pervasive Intelligence and Computing, Intl Conf on Cloud and Big Data Computing, Intl Conf on Cyber Science and Technology Congress (DASC/PiCom/CBDCom/CyberSciTech)
Date Publishedaug
Keywordsapplication security, common vulnerabilities test environment, Computer architecture, conventional platform, detection systems, distributed scanning system, existing security vulnerabilities, FalconEye system, generic vulnerabilities scanning, great precision, high-performance distributed security scanning system, Human Behavior, human factors, human society, important transactions, input module, input source module, Internet, malicious users, Metrics, Monitoring, open source framework, Pervasive Computing Security, pubcrawl, public domain software, resilience, Resiliency, Scalability, scanner module, secure practices, security of data, sensitive data, Servers, Spider, support platform module, Task Analysis, Uniform resource locators, Vulnerability Scanning System, Web applications, Web developers, web security, web vulnerabilities
AbstractWeb applications, as a conventional platform for sensitive data and important transactions, are of great significance to human society. But with its open source framework, the existing security vulnerabilities can easily be exploited by malicious users, especially when web developers fail to follow the secure practices. Here we present a distributed scanning system, FalconEye, with great precision and high performance, it will help prevent potential threats to Web applications. Besides, our system is also capable of covering basically all the web vulnerabilities registered in the Common Vulnerabilities and Exposures (CVE). The FalconEye system is consists of three modules, an input source module, a scanner module and a support platform module. The input module is used to improve the coverage of target server, and other modules make the system capable of generic vulnerabilities scanning. We then experimentally demonstrate this system in some of the most common vulnerabilities test environment. The results proved that the FalconEye system can be a strong contender among the various detection systems in existence today.
Citation Keywang_falconeye_2019