<![CDATA[The progression of digital transformation has increased cybersecurity concerns, primarily due to the growing prevalence of system vulnerabilities. Penetration testing (pentesting) is an essential technique for identifying and assessing vulnerabilities; however, conventional methods are labor-intensive and heavily reliant on expert participation. This study proposes the development of an automated penetration testing framework that utilizes Common Vulnerabilities and Exposures (CVE) to enhance efficiency and reduce reliance on manual processes. The framework utilizes software engineering design patterns, namely the Template Method and Abstract Factory, to guarantee modularity, scalability, and maintainability. The implementation and evaluation reveal the system's capacity to reliably perform CVE-based penetration testing activities with consistent performance across multiple iterations. Comparative testing demonstrates that the suggested framework attains superior consistency in execution time and resource utilization compared to monolithic solutions. In conclusion, the established methodology offers a dependable basis for automated CVE-based security evaluations and facilitates continuous adaptation to forthcoming cybersecurity issues.]]>
Copyrights © 2025
