Method for monitoring the sequence of implementation of attacking actions during an active analysis of the security of corporate networks

Abstract: The article proposes an approach to increase the efficiency of vulnerability validation during automatic active analysis of security of corporate networks based on control of the sequence of implementation of offensive actions (exploits) according to softmax action selection strategy using Gibbs probability distribution. At the same time, based on a practical analysis of the process of validation of vulnerabilities, the coefficient of erroneous decisions on the implementation of the exploit was introduced, whi… Show more