Litcius/Paper detail

Automated penetration testing: Formalization and realization

Charilaos Skandylas, Mikael Asplund

2025Computers & Security14 citationsDOIOpen Access PDF

Abstract

Recent changes in standards and regulations, driven by the increasing importance of software systems in meeting societal needs, mandate increased security testing of software systems. Penetration testing has been shown to be a reliable method to asses software system security. However, manual penetration testing is labor-intensive and requires highly skilled practitioners. Given the shortage of cybersecurity experts and current societal needs, increasing the degree of automation involved in penetration testing can aid in fulfilling the demands for increased security testing. In this work, we formally express the penetration testing problem at the architectural level and suggest a general self-organizing architecture that can be instantiated to automate penetration testing of real systems. We further describe and implement a specialization of the architecture in ADAPT, an architecture-driven automated penetration testing tool, targeting systems composed of hosts and services. We evaluate and demonstrate the feasibility of ADAPT by automatically performing penetration tests with success against: Metasploitable2, Metasploitable3, and a realistic virtual network used as a lab environment for penetration tester training.

Topics & Concepts

Computer scienceRealization (probability)Penetration (warfare)MathematicsOperations researchStatisticsSoftware Testing and Debugging TechniquesSoftware Reliability and Analysis ResearchSoftware Engineering Research
Automated penetration testing: Formalization and realization | Litcius