|
|
Smart meter simulation on KYPO platform
Morawiec, Daniel ; Gerlich, Tomáš (referee) ; Lieskovan, Tomáš (advisor)
This bachelor thesis is focused on problematics of smart grids, smart meters and protocols which are used in the energy industry. The part of thesis is dedicated to DLMS protocol and COSEM specification. Cloud platform OpenStack and cyber range platforms, more specifically KYPO CRP, are subsequently described in this work. In the last part of the bachelor thesis deployment of platforms OpenStack and KYPO CRP is executed and testing scenario with common elements of energy networks is commissioned on the platform KYPO.
|
|
|
Cyber game for the OpenStack platform
Píš, Patrik ; Holasová, Eva (referee) ; Martinásek, Zdeněk (advisor)
This bachelor's thesis presents matters of penetration testing and ethical hacking with primary focus on binary exploitation. The main goal of this bachelor's thesis was to design and implement a cyber game which focuses on combining various exploitation techniques and presenting them in educative and engaging way. The theoretical part of this thesis concentrates on penetration testing methodology and provides a detailed analysis of a given vulnerability's mechanics and technologies that were crucial for the game's development. Practical part of this thesis consists of a detailed description of the game's design and implementation to OpenStack and cyber arena platforms. Additionally, the practical part of this thesis focuses on development of vulnerable applications, methodology and steps necessary for their successful exploitation. Due to the character of cyber game, a few protection mechanisms were necessary to deploy, and their description takes place in practical part of this bachelor's thesis as well.
|
|
|
DLMS/COSEM protocol security
Tomko, Tomáš ; Mlýnek, Petr (referee) ; Lieskovan, Tomáš (advisor)
The aim of this thesis is to familiarize the reader with the DLMS/COSEM protocol, which is mainly used in the power industry. The thesis introduces the concept of smart grids along with their development and basic legislation. In the following section, all the protocols used in smart energy networks are discussed with most emphasis on the mentioned DLMS/COSEM protocol and its security features and vulnerabilities. Furthermore, the thesis aims to introduce the reader to the security risks in industrial networks and the Cyber Range KYPO platform. It was important to familiarize with the capabilities that this platform offers. The next task of this thesis is to operationalize the KYPO platform in a laboratory environment with a security scenario focused on DLMS/COSEM security. The security scenario that we have managed to create involves the interception of communication and the exploitation of at least two security vulnerabilities of the DLMS/COSEM protocol. All the programs and tools that we have used to achieve the objectives of this thesis have been summarized in more detail in a separate chapter, which is dedicated to the practical part of the thesis. The thesis describes the procedure and the problems that we encountered while completing the thesis assignment. The actual virtual scenario that we prepared runs on a server at the premises of the BUT. On this server is installed Cyber Range platform KYPO in all-in-one configuration. The created security scenario using the DLMS/COSEM protocol contains two users and one attacker located in the same network, as we have defined it. We used a simple text editor to define the network configuration and defined it for the KYPO platform in YAML format, which is used to automate the data in a form that is easy for humans to read. We also used the same YAML format to define playbooks, which serve as the easiest way in Ansible to automate repetitive tasks. We used them to install packages, update existing packages, and prepare the virtual environment to exploit DLMS/COSEM protocol vulnerabilities.
|
|
|
Start Building Your Own Cyber Range – Cyber Arena
Stodulka, Tomas
The research deals with the importance of education against cyber crimes in today’s world.One of the solutions is through so-called cyber ranges. First two chapters briefly explain the currentproblematic and present some representatives of cyber ranges. The work continues by stress testingof the selected cloud computing platform that is the most suitable for cyber range purposes. Based onthe results, servers/devices are purchased, which form the basis of the future Cyber Arena in BUT
|
|
|
Cyber exercises on the OpenStack platform
Fišarová, Veronika ; Hajný, Jan (referee) ; Lieskovan, Tomáš (advisor)
The goal of this bachelor thesis is to get acquainted with the platforms that are used to create the cyber ranges. The main part of thesis is focused on the cloud platform named OpenStack and its possibilites in creation of cyber ranges. The OpenStack installation options are compared and the selection of the instalation that is suitable for the KYPO project is made. The last part is devoted to the analysis of the KYPO project and the actual installation of OpenStack to the virtual station followed by the deployment of the KYPO platform on the modified OpenStack cloud and the commissioning of a training scenario.
|
|
|
Cybersecurity game in OpenStack platform
Huška, Luděk ; Lieskovan, Tomáš (referee) ; Stodůlka, Tomáš (advisor)
The bachelor thesis is about creation of the cybernetic game on the OpenStack platform. The work starts with an explanation of necessary knowledge like: Informational cybernetic and computer security, security threats, and testing of the overall security. In the practical part, there is created a cyber game that focus on exploitation and basic security vulnerabilities. The next part involves analysis ongoing complexity of hardware resources like RAM, CPU, disc, etc. In the end, there is a guideline for a lab exercise, which is made for students and professors or teachers both separated.
|
|
|
Virtualization platform for cyber range
Horváthová, Estera ; MU, Pavel Šeda, KPSK FI (referee) ; Lieskovan, Tomáš (advisor)
The bachelor thesis deals with the creation and operation of sandboxes for selected scenarios using the sandbox-creator tool, which is compatible with the KYPO project and uses the OpenStack platform. The theoretical section describes the technologies and tools used to create training platforms. Virtualization, containerization and cloud computing are described in the technologies and VirtualBox is described in the tools, Docker or OpenStack. The work also describes selected cyber range platforms that use these technologies. The practical part describes the compatibility of the selected platform with the KYPO project, the configuration tools used, the preparation of the experimental environment, the creation and operation of sandboxes for laboratory exercises, which are listed in the annex.
|
|
|
Virtualization of energy infrastructure
Hraboš, Šimon ; Stodůlka, Tomáš (referee) ; Lieskovan, Tomáš (advisor)
This work describes the virtualization process, virtualization tools and virtualization automation. The work also deals with the description of energy infrastructure, KYPO cyber range platform and DLMS/COSEM protocol used in energy. The practical part deals with the virtualization of energy infrastructure using OpenStack and KYPO cyber range platforms. A virtual environment was created using Vagrant application. The OpenStack and KYPO cyber range platforms were subsequently installed in this environment. Next, a sandbox definition was created. The sandbox definition creates a scenario with an energy infrastructure using KYPO platform. The functionality of the energy infrastructure was verified using the Gurux DLMS library.
|
|
|
Event-Driven Automation
Havlín, Jan ; Češka, Milan (referee) ; Lengál, Ondřej (advisor)
The thesis deals with automation of processes in Testing Farm Team of company Red Hat Czech s.r.o. Automating the chosen task "Update and test continuous integration system with new operating system build results in simplified maintenance of said continuous integration system. Implementation uses a Jenkins server to execute jobs and tft-admin tool to perform smaller steps resulting in automation of the task. Also, in the implementation part, modifications of the tft-admin tool allow usage in automated scripts which simplifies future automation of other processes.
|
|
|
Image-Based Provisioning for Beaker Using OpenStack
Hostačný, Peter ; Rogalewicz, Adam (referee) ; Smrčka, Aleš (advisor)
Integration testing in Beaker project is always performed in a clear environment, on a freshly installed operating system. The installation takes up a large percentage of the test machine preparation time. This work attempts to accelerate the process of preparation by cloning virtual machine images in OpenStack cloud platform. In order to run tests on this platform, Beaker must have it's own OpenStack account, some extra libraries installed on the Beaker server side, images must be uploaded into cloud in advance and the tests must require x86_64 cpu architecture. This feature is expected to accelerate the preparation of test machines and thus accelerate testing and increase the efficiency of computing resources usage. The result of this work is planned to be used by Red Hat for regular package testing.
|
guest ::
