本文主要为广大网友提供“反弹端口木马的设计与实现”,希望对需要反弹端口木马的设计与实现网友有所帮助,学习一下!
包括论文,设计,论文字数:11417,页数:24
摘 要
木马是用于远程控制的黑客工具,被黑客用来远程操作他人计算机、监视别人和盗窃别人帐号、密码和数据等,以达到破坏他人计算机、偷窃别人隐私和得到经济利益的目的。作为网络安全管理人员,认真地研究木马攻击技术,理清木马攻击手段与过程,提早思考应对策略是防御木马攻击的有效途径。因此,在木马已对网络与信息安全构成极大危险的时代研究木马技术、编写木马程序,对于防护网络安全、促进电子商务的发展具有重要的现实意义。
文中在深入研究国内外木马技术与发展方向的基础上,介绍了木马的发展与现状以及木马组成与特性;对反弹端口木马的连接方法进行了具体详尽的分析。充分利用传统防火墙疏于对向外连接的过滤这一特点,使用Visual C++ 6.0进行Socket网络编程开发而成。实现了木马绕过防火墙建立连接;实现木马的隐藏、自动运行等基本特性,让服务端光驱弹出、机箱播放音乐等功能。文中细致地描绘了木马的功能执行过程。最后提供了全面的测试结果。
关键词:木马;反弹端口;服务端;客户端;套接字
Design and Implementation of Rebound Ports Trojan horse
Abstract
The Trojan horse is a kind of hacker’s tool which is used for remote control and operating others’ computers, monitoring and stealing others’ account numbers, passwords and data and so on, in order to destroy others’ computers or get their privacy and economic interests. As the Internet security manager, we should pay attention to preventing the Trojan horse when we detect and delete the Trojan horse. We must study the technology of the Trojan horse attack, clear the means and process of the Trojan horse to find an efficient path to prevent the Trojan horse attack ahead of time. So at the time that the Trojan horse is dangerous to the network and security of information, we should study the technology of the Trojan horse and code the Trojan horse programs, which is significant to protect the Internet security and promote the development of the e-business.
The thesis is writen on the bases of deeply studying the Trojan horse technique and development orientation at home and overseas, then, introduces the development and current situation of Trojan horse and its component as well as characteristics. This thesis analyzes the method of how to connect with Rebound Ports Trojan horse in detail. Making full use of which the firewall neglect to filter the Rebound Ports Trojan horse, it is developed by Visual C++6.0. The design has realized the function which the service could connect the client actively, also implemented the basic characteristics of concealment, automatic running, rebounding the CD-ROM of services, chassis playing music and so on. At last the paper describes the progress of executing Trojan horse and affords all-around test result.
Key words: Trojan horse; Rebound port; service port; client port; socket
目 录
1 引言 1
1.1 课题背景 1
1.2 国内外研究现状 1
1.3 课题研究的意义 2
1.4 课题的研究方法 2
2 相关理论基础 2
2.1 木马概述 2
2.1.1 木马的组成 3
2.1.2 木马的特征 3
2.1.3 反弹端口木马介绍 4
2.2 C/S模式 4
2.3 套接字(Socket) 5
2.4 Visual C++ 6.0 5
3 需求分析 5
3.1 系统规格说明 5
3.1.1 木马的概貌 5
3.1.2 功能要求 6
3.1.3 性能要求 6
3.1.4运行要求 6
3.2 数据要求 6
3.3 用户系统描述 7
4 木马的设计与实现 7
4.1 木马结构设计 7
4.1.1 木马的主体设计 8
4.1.2 木马的自动启动实现 8
4.1.3 木马的窗口隐藏实现 9
4.2 木马连接过程 9
4.2.1 连接过程理论研究 9
4.2.2 木马连接过程实现 11
4.3 木马的远程控制功能设计 13
4.3.1 木马的功能实现 13
4.3.2 木马的功能执行过程 14
5 测试 15
5.1 测试环境 15
5.2 测试过程与结果 15
结 论 17
参考文献 17
致 谢 18
声 明 19
反弹端口木马的设计与实现......