中文摘要：

随着电力公司信息化快速发展，特别是SG-ERP的实施，信息系统的基础性、全局性作用越来越强。文章论述了信息安全攻防演练平台采用的基于Hook的主机监视技术、隐藏技术、虚拟机管理技术。文章通过对信息安全现状的需求分析，给出了信息安全攻防演练平台的总体架构和各部分功能描述，重点讲述了管理模块、攻防考试模块、培训演练模块和数据日志模块的构成及其设计与实现过程。通过对系统的运行进行测试，验证了各项功能的合理性和可用性。

英文摘要：

With the fast development of informationization of electric power enterprises, especially after the implementation of SG-ERP, information system increasingly plays a basic and global role. In this paper, some techniques adopted in information security attack and defense platform are elaborated, including hook-based host computer monitoring technique, concealing technique, virtual machine management technique. Through analyzing the present information security situation, the overall framework of the platform is put forward and the functions of each part are described, the constitution, design and implementing procedure of management module, attack and defense examination module, training and drilling module and data daily record module are demonstrated with focus. By testing the system operation, the rationality and feasibility of each function are veriifed.