|
|
The Tool for Penetration Tests of Web Applications
Dobeš, Michal ; Malinka, Kamil (referee) ; Barabas, Maroš (advisor)
The thesis discusses the issues of penetration testing of web applications, focusing on the Cross-Site Scripting (XSS) and SQL Injection (SQLI) vulnerabilities. The technology behind web applications is described and motivation for penetration testing is given. The thesis then presents the most common vulnerabilities according to OWASP Top 10. It lists the principles, impact and remediation recommendations for the Cross-Site Scripting and SQL Injection vulnerabilities. A penetration testing tool has been developed as a part of this thesis. The tool is extendable via modules. Modules for detection of Cross-Site Scripting and SQL Injection vulnerabilities have been developed. The tool has been compared to existing tools, including the commercial tool Burp Suite.
|
|
|
Evolutionary Design of Structures Using Rewriting Systems
Dobeš, Michal ; Zachariášová, Marcela (referee) ; Bidlo, Michal (advisor)
This work focuses on application of rewriting systems in the context of biology-inspired development of structures in evolutionary algorithms. As a part of this work, a method has been proposed for design of general structures that uses the aforementioned principle. This document includes an introduction into the theory of sorting networks and their design, the problem of which is later shown to be solvable using the proposed method. In addition, the theoretical background of evolutionary algorithms and rewriting systems is discussed. In the field of rewriting systems, an extension to the class of IL-systems has been created for use in the proposed method. The proposed method has been successfuly applied in the design of growing sorting networks. The results produced by the proposed method significantly outperform the results of the currently best-known comparable method.
|
|
|
Establishing a Nonprofit Organisation Providing Sports Activities with the Focus on Law and Organizational Structure
Dobeš, Michal ; Ruda, Tomáš (advisor) ; Sup, Martin (referee)
Title: Establishment of a Non-Profit Organization Providing Sports Activities with Focus on Law and Organizational Structure Targets: The target of the work is to create a guide describing how to proceed with establishment of a non-profit organization providing sport activities from the legal point of view. Another target of the work is a creation or determination of an organizational structure for sport oriented non-profit organization with a membership of up to 100 members. Methods of research: The following methods were used to create a business plan: literature research, document analysis, semi-structured interview with an attorney-at- law relating to issues of establishment of a non-profit organization, semi-structured interview with a bookkeeper of AK Zlín relating to non-profit organization financing and tax issues. Results: The result of the work is a guide describing particular steps of a process relating to establishment of a non-profit organization. The guide includes necessary documentation for establishment of a sport club as a registered association. Within the work particular financial and other sources are listed with which the non-profit organization might dispose including subsidy programmes eligible for sport clubs with a legal form of a registered association. Further, the work...
|
|
|
Organization of Barum Czech Rally Zlín 2016
Dobeš, Michal ; Janák, Vladimír (advisor) ; Štědroň, Bohumír (referee)
Title: Organization of sports event Barum Czech Rally 2016 Targets: The main goal of this thesis is to analyze the daily management of the sports event Barum Czech Rally Zlín 2016 and consequently to find main inadequacies and deficits in organization of this event. In accordance with this findings I will suggest specific changes for improvement and efficiency of the overall concept and daily organization activities for Barum Czech Rally Zlín 2017 and following seasons. Methods of research: In this thesis there are used these methods of research: Case study, document analysis, participating observations, semi-structured interview. Results: The thesis results in set of proposals, suggestions and measures for following seasons of mentioned event based on its SWOT analysis findings. Key words: Motor sports, Rally, Race, Management of sports event, SWOT analysis.
|
|
|
Evolutionary Design of Structures Using Rewriting Systems
Dobeš, Michal ; Zachariášová, Marcela (referee) ; Bidlo, Michal (advisor)
This work focuses on application of rewriting systems in the context of biology-inspired development of structures in evolutionary algorithms. As a part of this work, a method has been proposed for design of general structures that uses the aforementioned principle. This document includes an introduction into the theory of sorting networks and their design, the problem of which is later shown to be solvable using the proposed method. In addition, the theoretical background of evolutionary algorithms and rewriting systems is discussed. In the field of rewriting systems, an extension to the class of IL-systems has been created for use in the proposed method. The proposed method has been successfuly applied in the design of growing sorting networks. The results produced by the proposed method significantly outperform the results of the currently best-known comparable method.
|
|
|
The Tool for Penetration Tests of Web Applications
Dobeš, Michal ; Malinka, Kamil (referee) ; Barabas, Maroš (advisor)
The thesis discusses the issues of penetration testing of web applications, focusing on the Cross-Site Scripting (XSS) and SQL Injection (SQLI) vulnerabilities. The technology behind web applications is described and motivation for penetration testing is given. The thesis then presents the most common vulnerabilities according to OWASP Top 10. It lists the principles, impact and remediation recommendations for the Cross-Site Scripting and SQL Injection vulnerabilities. A penetration testing tool has been developed as a part of this thesis. The tool is extendable via modules. Modules for detection of Cross-Site Scripting and SQL Injection vulnerabilities have been developed. The tool has been compared to existing tools, including the commercial tool Burp Suite.
|
guest ::
RSS feed.