|
|
A New Generation of an IPFIX Collector
Huták, Lukáš ; Žádník, Martin (referee) ; Wrona, Jan (advisor)
This master's thesis addresses processing of flow monitoring records from a point of view of an IPFIX collector. It analysis the current solution of the modular collector, which went through considerable historical development, and focuses on revealing its strengths and weaknesses. Based on acquired knowledge, a new collector is designed. The new solution, which significantly modifies individual components for processing of flow records, focuses on high throughput and adds missing functionalities. The document also compares performance of both generations and the new collector clearly dominates.
|
|
|
Anonymization of users when collecting network traffic
Hamár, Lukáš ; Blažek, Petr (referee) ; Sikora, Marek (advisor)
This thesis deals with anonymization of data, which could lead to disclosure of the identity of end users in network traffic. Work describes algorithms by which individual data parts are anonymized and also tools which use these techniques for network traffic anonymization. The next part of the thesis describes construction of a laboratory network, in which is the network traffic captured, containing pcap and NetFlow data. With using of the captured data, the anonymization tools are tested and the results are compared. In the last part of the thesis is created graphical interface for one of the tested anonymization softwares.
|
|
|
System for monitoring of devices connected to the computer network
Macků, Jan ; Petyovský, Petr (referee) ; Macho, Tomáš (advisor)
The bachelor thesis deals with the design and implementation of the web application for monitoring of the network devices. The thesis describes the design and functionality of the web interface that is used for fast and simple monitoring of the connected devices in computer network. The work also addresses the security of the web interface and the design of database structures. Further, the work describes briefly the characteristics of SNMP protocol and other important tools for obtaining the monitored data. The API of the web application is described in detail, including hints for building stand alone applications based on it. Work also contains a brief user guide for end users.
|
|
|
Identification of Device Availability in Technological Networks
Vodehnal, Stanislav ; Mlýnek, Petr (referee) ; Škorpil, Vladislav (advisor)
This diploma thesis deals with the monitoring of network elements of technological networks and distribution systems. There are described reasons why and what kind of values we want to monitor. Three monitoring systems are then selected, described their properties and functions. Based on their merits, one system for deploying the test environment is selected. The practical part is the configuration of the selected system and its subsequent deployment to the network.
|
|
|
Network Traffic Capturing With Application Tags
Zuzelka, Jozef ; Lichtner, Ondrej (referee) ; Pluskal, Jan (advisor)
Network traffic capture and analysis are useful in case we are looking for problems in our network, or when we want to know more about applications and their network communication. This paper aims on the process of network applications identification that run on the local host and their associating with captured packets. The goal of this project is to design a multi-platform application that captures network traffic and extends the capture file with application tags. Operations that can be done independently are parallelized to speed up packet processing and reduce packet loss. An application is being determined for every (both incoming and outgoing) packet. Records of all identified applications are stored in an application cache with information about its sockets to save time and not to search for already known applications. It's important to update the cache periodically because an application in the cache may close a connection at any time. Finally, gathered information is saved to the end of pcap-ng file as a separate pcap-ng block.
|
|
|
Xtend Monitoring and Analysis Tool
Kocman, Tomáš ; Veselý, Vladimír (referee) ; Ščuglík, František (advisor)
This thesis is focused on the monitoring and analysis of data transfer between applications on the network and creating custom monitoring tool that would meet the requirements of the application server Xtend of company Xura, Inc. The introductory chapters describe theoretical background of data capture and analysis, and application server Xtend with the services it provides. The thesis is mainly focused on the implementation of a system that cooperates with the server Xtend and its output can be further processed and interpreted.
|
|
|
Network Probe
Tkáč, Peter ; Zvončák, Vojtěch (referee) ; Číka, Petr (advisor)
he concern of the thesis is analysis and comparison of network probes. This thesis is dedicated to open-source solutions of network probes, which are available under public license. The first part of the thesis describes architecture and function principles of network probes. Next part describes each probe and its functions. Last part of the thesis contains the description of the solution of network probe and principles of its operation.
|
|
|
IP Address Activity Monitoring
Pilátová, Kateřina ; Krobot, Pavel (referee) ; Bartoš, Václav (advisor)
Poslední dobou se objem přenášených dat po síti neustále zvyšuje. K urychlení prohledávání dat je potřeba mít způsob jejich vhodné indexace. Tato bakalářská práce se zabývá tímto problémem, konkrétně ukládáním a vyhledáváním dat za účelem zjištění aktivity komunikujících IP adres. Cílem této práce je navrhnout a implementovat systém pro efektivní dlouhodobé ukládání a vizualizaci aktivity IP adres. Aktivitou je myšleno, zda daná adresa generovala provoz v daném intervalu či ne, tedy lze ji reprezentovat jediným bitem, což redukuje objem prohledávaných dat. Výsledný systém se skládá z backendu monitorujícího provoz a ukládajícího záznamy o aktivitě do uložiště a jejich parametry do konfiguračního souboru. Dále obsahuje webový server, který na základě požadavků uživatele data čte a vizualizuje ve formě obrázků. Uživatel může specifikovat oblast dat, kterou chce zkoumat podrobněji, pomocí interaktivního webového rozhraní.
|
|
|
System for Detection of APT Attacks
Hujňák, Ondřej ; Kačic, Matej (referee) ; Barabas, Maroš (advisor)
The thesis investigates APT attacks, which are professional targeted attacks that are characterised by long-term duration and use of advanced techniques. The thesis summarises current knowledge about APT attacks and suggests seven symptoms that can be used to check, whether an organization is under an APT attack. Thesis suggests a system for detection of APT attacks based on interaction of those symptoms. This system is elaborated further for detection of attacks in computer networks, where it uses user behaviour modelling for anomaly detection. The detector uses k-nearest neighbors (k-NN) method. The APT attack recognition ability in network environment is verified by implementing and testing this detector.
|
|
|
Design of small-size data networks with advanced services
Vaněk, Jiří ; Kubánková, Anna (referee) ; Novotný, Vít (advisor)
The main objective of this thesis is to get acquainted with the field of designing professional data networks and with typical network service required at these networks. A basic description of network hierarchy and of network elements is part of this thesis. At the same time, individual network services and their usage are defined. At the latter part of the thesis there is a suggestion of design creation steps and of service implementation. Further on, the thesis describes a real design of a laboratory task and it’s practical implementation. Detailed guidelines how to complete a laboratory task are part of this thesis.
|
guest ::
