“虚拟的攻” 促 “真实的防”
人工智能引领信息安全未来
融合机器学习与网络攻击风险态势分析,虚拟黑客智能机器人Vackbot引领新一代网络攻防技术
安全工作前移-主动智能化持续性网络安全验证与风险感知平台!
多维度
高精准
深迭代
自预警
全域化
高效率
低成本
公司简介
北京墨云科技有限公司专注于将网络攻击技术与机器学习相结合,深入研究主动安全验证、攻击感知预警分析等相关技术,并率先利用人工智能技术模拟黑客网络入侵,以攻击视角来主动验证用户网络安全控制的有效性。
我们将积累多年的专业经验策略知识与数据分析建模结合在一起,打造出了业界领先的创新性主动型安全产品:虚拟黑客机器人Vackbot(Virtual Hacker Robot)。墨云科技作为一家虚拟黑客公司,致力于改变当前网络安全行业风险验证与风险态势感知预警的方式,基于Vackbot构建出新一代智能化持续性网络安全验证平台,并以此为基础建立全新的网络安全验证、攻击态势预警服务保障体系。
“虚拟的攻”促”真实的防”
人工智能技术的飞速发展,意味着网络攻防双方对机器学习及人工智能技术的利用与实践必将成为今后网络安全技术的主题,墨云科技信“基于AI的防”必须通过“基于AI的攻”来检验、来锤炼、来提升。墨云科技正是通过Vackbot等产品的不断迭代发展,帮助网络安全做到”魔高一尺,道高一丈”。

墨云科技致力于为各行业用户在云计算、大数据、移动互联网、物联网、人工智能、区块链等领域,革新网络安全风险验证的方式,从当前以人工服务为主逐渐转变为以机器持续服务为主的人机结合模式,为您在风险控制及安全合规方面提供全新的技术手段!

欢迎随时联系我们,及早体验墨云科技Vackbot智能机器人带来的全新安全理念!
技术核心架构
墨云科技自主研发的三大技术核心:墨云安全大脑、千寻情报平台、VackBot虚拟黑客机器人
作为墨云科技的全球安全情报网络,通过从全球节点收集各类攻击事件信息,获取丰富的安全情报以及攻击知识数据,分别提供给墨云大脑及VackBot平台,为它们的不断提升智能水平和攻击能力提供了数据与情报素材。
作为墨云人工智能的中枢引擎,负责对海量知识数据进行机器学习、建模,不断地构建和改进墨云安全多维多态知识图谱,并促进AI引擎以及虚拟黑客机器人的虚拟攻击能力的不断提升。
作为墨云科技为用户提供安全服务的主要承载平台,依托墨云安全大脑知识和千寻即时情报系统,构建了墨云智能虚拟黑客服务体系,为企业用户提供智能化持续性网络安全验证与风险态势预警服务,实现安全验证技术革命性的突破。
技术优势
墨云科技以Vackbot为核心的安全解决方案,将人工智能与模拟网络攻击技术相结合,打造出全新的网络安全验证与风险态势预警平台。利用诸多新功能新手段,极大提升了信息安全工作效率,降低了成本,同时以机器为主、人工为辅的人机结合模式,实现了更好的标准化和可控性,减少了传统依赖人为工作所带来的固有差异性和安全可控性问题。
多维度
数据维度、安全视角
VackBot对多类的风险资产进行量化评估,包括攻击面、漏洞、风险转化率等,并使用可量化的指标构成安全分析视图的不同维度,为安全专家提供了更多的可直接了解风险形势的安全视角。
高精准
充分利用、准确验证
VackBot内置丰富的漏洞验证与利用组件,对于所有发现漏洞,都需要经过相应的验证组件及流程,并检查验证的证据进行结果判断,证据类型包括但不限于获得的数据,权限等。此外,迭代攻击能力和漏洞利用组件的配合使用,使VackBot具备了可对漏洞进行充分利用的能力,可对系统进行更深入的风险检查,而不仅是停留在表层风险的识别上。
深迭代
多层渗透、迭代攻击
VackBot具有关联目标攻击、感染传播攻击以及联合漏洞利用攻击等特点,在无限制配置模式下,会从给定目标为起点,自动进行包括可攻击目标最大化搜索,可利用漏洞最大化测试与传播,可利用数据知识最大化联合利用等行为,实现对目标及与关联IT资产的多层渗透、迭代攻击。
自预警
攻击模拟、态势感知
通过主动对网络资产进行攻击模拟,检查、验证并主动呈现网络资产对特定攻击行为抵抗能力,VackBot可以为企业网络安全作出自主的预警提示。企业还可以把VackBot的该部分能力融合到态势感知平台,通过合理的联动,提升企业态势感知平台的主动感知能力。
全域化
内网外网、IT及IOT
VackBot支持广泛的目标,对全IT域资产都能输出安全验证服务,不管目标对象是内网资产还是外网应用,或者是传统IT类型还是新型IOT类设备及系统,只要保证网络连接可达,VackBot即可通过对目标对象发起主动的虚拟攻击行为来进行安全状态检查。
低成本
机器为主、人机结合
VackBot提供自动化的持续性安全验证服务,使安全检查工作从当前以人工服务为主逐渐转变为以机器人服务为主人工服务为辅的人机结合形式,既缓解了当前安全专业人才短缺问题,又让真正的安全专家放手日常繁杂高强度的工作给机器人,得以将更多精力投入到网络安全架构以及新威胁新技术方面,有效降低了安全验证服务的实施成本。
高效率
持续并发、无限扩展
VackBot以机器人形式提供安全验证能力的输出,提供7*24小时的在线值守状态,随时都处于可接受工作安排状态,并可对多个运行任务保持持续并发式的执行。同时,VackBot系统架构属于分配任务和工作负载的分布式应用架构,支持集群模式线性扩展,有着无限的性能扩展空间。
Multi-dimensional
data dimension, security perspective
VackBot quantifies multiple types of risk assets, including attack surfaces, vulnerabilities, risk conversion rates, etc., and uses quantifiable metrics to form different dimensions of the security analysis view. Provide security professionals with more security perspectives that directly understand the risk landscape.
High precision
full use and accurate verification
VackBot has built-in rich vulnerability verification and utilization components. For all discovered vulnerabilities, it needs to go through the corresponding verification components and processes, and check the evidence of the verification to judge the results. The types of evidence include but are not limited to the obtained data and permissions. In addition, the combination of iterative attack capabilities and exploit components gives VackBot the ability to take full advantage of vulnerabilities and perform deeper risk checks on the system, not just on the identification of surface risks.
Deep iteration
multi-layer infiltration, iterative attack
VackBot has the characteristics of associated target attack, infection propagation attack and joint exploit attack. In the unrestricted configuration mode, it will automatically start from the given target as the starting point, and maximize the search including the attackable target. You can use data knowledge to maximize the joint use and other behaviors to achieve multi-layer penetration and iterative attacks on targets and associated IT assets.
Self-warning
attack simulation, situational awareness
By actively attacking network assets, simulating, verifying, and proactively presenting network assets' resistance to specific attacks, VackBot can make autonomous warnings for enterprise network security. Enterprises can also integrate this part of VackBot's capabilities into the situational awareness platform, and improve the active awareness of the enterprise situational awareness platform through reasonable linkage.
Wide range
intranet&extranet, IT and IOT
VackBot supports a wide range of targets, and can output security verification services for all IT domain assets, regardless of whether the target object is intranet assets or external network applications, or traditional IT types or new IOT devices and systems, as long as the network connection is guaranteed. VackBot can perform a security status check by initiating a virtual attack on the target object.
Low cost
machine-based, man-machine combination
VackBot provides automated and continuous security verification services, which makes the security inspection work from the current manual service to the human-machine combination with the robot service as the main service, which not only relieves the shortage of current security professionals, but also Let the real security experts let go of the daily complicated and high-intensity work to the robot, and put more energy into the network security architecture and new threats and new technologies, effectively reducing the implementation cost of the security verification service.
High efficiency
continuous concurrency, unlimited expansion
VackBot provides a secure verification capability output in the form of a robot, providing a 7*24-hour on-line watch status, ready for work scheduling, and continuous concurrent execution of multiple operational tasks. At the same time, the VackBot system architecture is a distributed application architecture that distributes tasks and workloads, supports horizontal scale-out, and has unlimited performance expansion space.