Automatic Generation of Attack Strategy for Multiple Vulnerabilities Based on Domain Knowledge Graph

Security evaluation is an essential activity for understanding the risks of industrial networks. Constant changes in networks and updates of security vulnerabilities lead to increasing costs of security testing. To realize the combined exploitation of multiple vulnerabilities in the industrial control network, Knowledge Graph is proposed to be applied in knowledge-driven attack strategy generation in this paper. A graph paradigm of knowledge about vulnerability exploitation is established by integrating and extracting multi-dimensional domain knowledge. By occupying each device-level node, attack strategies based on domain knowledge improve the performance in comprehensive vulnerability exploitation and flexible response. The feasibility of our method is demonstrated through an industrial network example.