|
| |
|
|
Slow DoS attacks generator
Krivulčík, Andrej ; Zeman, Václav (referee) ; Sikora, Marek (advisor)
The work is focused on Slow DoS attacks and generating them. There are compared 3 most popular web servers and their defensive modules against this type of attacks. Closed are described network model TCP/IP, protocol HTTP (Hypertext Transfer Protocol), each DoS attack, Slow GET, Slow POST or Slow Read and also flood attacks. Afterwards the attack generator is described, with its functionality.
|
|
|
Automatic configuration of virtual infrastructure
Kadlíček, Jan ; Mašek, Jan (referee) ; Uher, Václav (advisor)
This master thesis focuses on the issue of automation of virtual infrastructure and available tools such as Ansible, Terraform and Puppet. The individual tools are compared here in sequence for installations or configuration creation. The result of this semester thesis is the selection of a suitable tool for automation of virtual infrastructure.
|
|
|
Porovnanie výkonnosti implementácií webových serverov podporujúcich HTTP/3
Rumančíková, Simona
The bachelor thesis contains a comparison of implementations of selected web servers supporting HTTP/3 protocol. In the introductory chapters, the chosen technology is introduced and certain web servers that support the HTTP/3 protocol are presented. Then the actual implementation of the three web servers (Caddy, Nginx, OpenLiteSpeed) supporting HTTP/3 is described. The purpose of the thesis culminates in the final chapter, where the results of the static web page retrieval are compared. Testing is simulated with selected negative events not only using the Firefox web browser, but also using the Linux traffic control software. These results are represented graphically and conclusions are drawn from them. Of the six simulations, OpenLiteSpeed had on average the shortest load time for the entire web content in up to three cases. A this was in the unbounded, Regular 4G/LTE and Good 3G situations. Caddy had the shortest average load time for web content with limited bandwidth and at 200 ms delay. For packet loss, Nginx had the shortest average load time for all web content.
|
|
|
Vulnerability testing of cloud solutions by Slowloris attack
Šrámek, Michal ; Sikora, Marek (referee) ; Šeda, Pavel (advisor)
This bachelor's thesis addresses the issue of distributed Slowloris attack implemented in the Apache JMeter module. This module is then used to demonstrate the vulnerability in the Microsoft Azure cloud environment. The outcome of the thesis is an extension of the module, enabling testing from multiple IP addresses. The SlowHTTPTest tool, which the module utilizes for the attack, is also modified. In the introduction, the basic concepts related to cloud services and their classification are established. This is followed by chapters defining the current security threats to the cloud and how they compare between the three largest cloud providers. The technologies and configurations used in Azure environments are also described. Finally, the thesis focuses on modifying the attack module to support multiple addresses and tests it on both local and cloud infrastructures.
|
|
|
Framework for a Web Internet Service Implemented in Google Cloud Platform
Roshka, Andrei ; Smrčka, Aleš (referee) ; Hrubý, Martin (advisor)
Cílem této bakalářské práce je navrhnout a naimplementovat rámcové řešení pro placenou internetovou službu a nasadit ho na cloudové služby poskytované Google Cloud Platform s nejnižší provozní cenou. Výsledná architektura je serverless a používá služby Firebase jako Firestore NoSQL databáze, Firebase Storage a Firebase Authentication. Rešení je psáno v jazyce TypeScript a skládá se ze dvou hlavních cásti - front-end aplikace a pracovního procesu, který zpracovává výpočetní úlohy. React se používá k vytvoření uživatelského rozhraní založeného na komponentách spolu s Reduxem pro centralizovanou správu stavu aplikací. Jako server pro front-end se používá Nginx. Pracovní proces je postaven na Node.js - serverovém prostredí pro JavaScript. Aplikace je úspešně nasazena do servisy Cloud Run jako sada Docker kontejneru za použitím CI/CD pipeliny postavené na Cloud Build.
|
|
|
Continuous Integration Dashboard
Abramov, Mikhail ; Rychlý, Marek (referee) ; Burget, Radek (advisor)
Tato bakalářská práce se zabývá vývojem webové aplikace pro integraci nástrojů CI/CD. Úkolem bylo prostudovat dostupné technologie a připravit aplikaci odpovídající zadaným požadavkům. Během implementace systému byly nastudovány aspekty vývoje, jako jsou nástroje CI/CD, rámce serveru, uživatelské rámce, databáze, technologie webových serverů, nástroje pro práci s kontejnery. Výsledkem bakalářské práce je aplikace skládající se ze tří částí: serverová část, klientská část a databáze. Tato aplikace je rozdělená do tří částí a připravena ke spuštění v nástrojích kontejnerizace.
|
|
|
Smart Video Doorbell Based on Raspberry Pi
Ondrejka, Adam ; Zemčík, Pavel (referee) ; Materna, Zdeněk (advisor)
This thesis is focused on the design and implementation of a smart doorbell based on Raspberry Pi. Unlike commercially available smart doorbells, the solution described in this thesis offers full functionality (motion detection, audiovisual streaming, and notifications) even without internet access. The doorbell operates fully locally and enables the user to use more doorbells at the same time. A web page and desktop app for displaying notifications was also implemented for the doorbell. After connecting to the android app Gotify, notifications can also be delivered to a device with the Android operational system.
|
|
|
Slow DoS attacks generator
Krivulčík, Andrej ; Zeman, Václav (referee) ; Sikora, Marek (advisor)
The work is focused on Slow DoS attacks and generating them. There are compared 3 most popular web servers and their defensive modules against this type of attacks. Closed are described network model TCP/IP, protocol HTTP (Hypertext Transfer Protocol), each DoS attack, Slow GET, Slow POST or Slow Read and also flood attacks. Afterwards the attack generator is described, with its functionality.
|
|
|
Web application for data transfer using TLS protocol
Dzadíková, Slavomíra ; Slavíček, Karel (referee) ; Smékal, David (advisor)
The work deals with web application development, implementation possibilities of web application, secure communication between server part and client part. Protocol HTTPS (Hyper Text Transfer Protocol) and TLS (Transport Layer Protocol) are described in more detail way, also the issue of PKI (Public Key Infrastructure). The work also covers authentication and authorization methods which are used in web applications, and the most common attacks according OWASP TOP 10. Technologies, programming languages and environments, which have been used: Python, Flask, Bootstrap, OpenSSL, Nginx, Nessus, JMeter, Lighthouse.
|
guest ::
