| [1] | Fanglu Guo, Yang Yu, and Tzi-cker Chiueh, “Automated and safe vulnerability assessment,” Computer Security Applications Conference, 21st Annual, 2005, pp. 10 pp.-159. |
| [2] | M. Gregg, Build Your Own Security Lab: A Field Guide for Network Testing, Wiley, 2008. |
| [3] | R. Budiarto, Sureswaran Ramadass, A. Samsudin, and S. Noor, “Development of penetration testing model for increasing network security,” Information and Communication Technologies: From Theory to Applications, 2004. Proceedings. 2004 International Conference on, 2004, pp. 563-564. |
| [4] | H. Anderson, Introduction to Nessus, October, 2003. |
| [5] | M. Staff, Metasploit 3.0 Developer’s Guide. |
| [6] | “Metasploit Research Projects.” |
| [7] | J. Foster, Metasploit Toolkit for Penetration Testing, Exploit Development, and Vulnerability Research, Syngress, 2007. |
| [8] | “Metasploit's Meterpreter.” |
| [9] | J. Lampe, Nessus 3.0 Advanced User Guide, October, 2005. |
| [10] | R. Rogers, Nessus Network Auditing, Second Edition, Syngress, 2008. |
| [11] | R. Deraison, “Nessus Security Scanner,” via the Internet. |
| [12] | “Network Computing | Feature | Security | Vulnerability Assessment Scanners | Page 1 | January 8, 2001.” |
| [13] | L. He and N. Bode, “Network Penetration Testing,” EC2ND 2005, 2006, pp. 3-12. |
| [14] | N. Dhanjani and J. Clarke, Network Security Tools, O'Reilly Media, Inc., 2005. |
| [15] | N. Dhanjani and J. Clarke, Network Security Tools: Writing, Hacking, and Modifying Security Tools, O'Reilly Media, Inc., 2005. |
| [16] | “NTFS - Wikipedia, the free encyclopedia.” |
| [17] | D. Geer and J. Harthorne, “Penetration testing: a duet,” Computer Security Applications Conference, 2002. Proceedings. 18th Annual, 2002, pp. 185-195. |
| [18] | D.S. Riha, B.H. Thacker, M.P. Enright, L. Huyse, and S.H.K. Fitch, “Recent Advances of the NESSUS Probabilistic Analysis Software for Engineering Applications,” Proc. AIAA/ASME/ASCE/AHS/ASC 42nd Structures, Structural Dynamics, and Materials (SDM) Conf., AIAA-2002-1268, Denver, CO, 2002, pp. 22-25. |
| [19] | E. Levy, “Smashing the stack for fun and profit,” Phrack magazine, vol. 7, 1996, p. 49. |
| [20] | R. Lippmann, S. Webster, and D. Stetson, “The Effect of Identifying Vulnerabilities and Patching Software on the Utility of Network Intrusion Detection,” Recent Advances in Intrusion Detection, 2002, pp. 307-326. |
| [21] | R. Deraison, The nessus attack scripting language reference guide, Version, 1999. |
| [22] | J. Forristal, G. Shipley, and N. Computing, “Vulnerability Assessment Scanners--In this dangerous world, a scanner must catch all known vulnerabilities. Perfection eludes these products, but Nessus comes the closest.,” Network Computing, vol. 1, 2001, p. 08. |