Abstract: 5G network construction is in full swing. The high rate, massive coverage, and extremely low latency of 5G networks make the Internet of Everything possible and bring new opportunities and challenges to network information and security.5G will create new prospects for industry transformation and business models. 5G will be further applied to various vertical industries, such as smart driving, smart grid, and smart healthcare.The 5G architecture is different from the previous 2G/3G/4G architecture and deploy MEC near base stations, which greatly 
increases security risks. As 5G constructs Internet of Everything scenarios, it faces more risks such as malicious attacks and information theft. This paper analyzes the weaknesses of the 5G network architecture and studies the security penetration framework in 5G networks and proposes the penetration framework of terminal side, RAN side, bearer side, MEC side and core network side.

Key words: 5G, security, penetration, testing

摘要： 当前5G网络建设如火如荼，5G网络高速率、海量覆盖、极低时延等特性，让万物互联成为可能，也给网络信息与安全带来了全新的机遇和挑战．5G将为产业变革和商业模式创造新的前景，5G将会更深入到各个垂直行业中，如智能驾驶、智慧电网、智慧医疗等等．5G本身由于架构与之前的2/3/4G架构都有所不同，更有MEC下沉，使得安全风险大大增加．5G在构建万物互联场景的同时，面临着更多的恶意攻击、信息窃取等风险，本文就上述内容通过分析5G网络架构的薄弱点进而展开关于5G网络下的安全渗透框架的研究，提出终端侧、RAN侧、承载侧、MEC侧和核心网侧的渗透框架方法.

关键词: 安全, 渗透, 测试, 框架