Apparatus and Method for estimating automated network penetration path based on network reachability

摘要

The present invention relates to a network technique. More specifically, the present invention relates to a device and a method for predicting a penetration path, which analyze a vulnerability of a network system for a network manager in a network environment having complex network connection and/or multiple vulnerabilities, present an attack graph by quantitative evaluation from outside or inside and present an optimal penetration path from the attack graph. The device for predicting an automated penetration path based on network reachability comprises: an information collection part collecting network information having network reachability based on a subnet structure, pre-analyzed network vulnerability information and pre-set exploit information; a quantification part quantifying the vulnerability information and the exploit information, and calculating a risk level; a vulnerability analyzing part analyzing a final vulnerability by using the network reachability and the risk level; and a graph generating part generating the attack graph by using the final vulnerability.