|
|
Tools for application server penetration testing
Vašíček, Tomáš ; Šeda, Pavel (referee) ; Martinásek, Zdeněk (advisor)
This thesis explores the field of penetration testing of application protocols. The thesis introduces the application protocols FTP, SSH, SMTP, POP3 and IMAP and explores their possible vulnerabilities. Information about vulnerabilities is obtained from publicly available collections such as HackTricks and The Hacker Recipes, but also by studying the RFC documents of each protocol. Based on the vulnerabilities found, penetration testing checklists are constructed to provide guidance through the process of testing a given protocol. The main contribution of the work is the development of a modular automated tool ptapptest and another auxiliary tool ptntlmauth, which are used for penetration testing of the mentioned application protocols. Finally, the thesis concludes by testing the ptapptest tool on application servers discovered using the Shodan search engine.
|
|
|
Fast Detection of Application Protocols
Grochol, David ; Vašíček, Zdeněk (referee) ; Sekanina, Lukáš (advisor)
Master thesis is focused on classification of application protocols based on application data taken from layer L7 of ISO/OSI model. The aim of the thesis is to suggest a classifier for SDM system (Software defined monitoring) so it could be used for links with throughput up to 100 Gb/s. At the same time it should classify with the fewest possible errors.Designed classifier consists of two parts. First part depicts encoders for encoding selected attributes. Second part deals with evaluating circuit which detects series characteristic for particular application protocols on the output from the first part. Considered attributes and series are taken from statistic analyzes of application protocol data.The classifier itself is designed so it can be implemented in FPGA and enables modification set of application protocols who intended for classification. The quality of designed classifier is tested on real network data. The results of classification are compared with current methods used for classification of application protocols.
|
|
|
The realization of the data communication for application to the mobile networks
Sodomka, Lukáš ; Růčka, Lukáš (referee) ; Jelínek, Mojmír (advisor)
Thesis deals with data technology, which can be used for communication between mobile and IP networks. The aim of the project is to design data communication and the subsequent implementation of the mobile and IP networks. First of all, it made an introduction to telecommunications systems with focus on GSM. Subsequently, the work examines data provided by GSM technology standard with a focus on GPRS, which is in the other chapters discusses in more detail. The resulting communication application protocol is designed in two versions, which is achieved by the creation of an autonomous system. Communication is implemented using JAVA programming language, which created an application client, server and implemented application protocol. Client application is tested on a mobile phone with Internet connection with support for GPRS technology. Server application is installed on a PC workstation, which is assigned a public IP address, it is easily addressable from the Internet.
|
|
|
Fast Recognition of Application Protocol
Adámek, Michal ; Veselý, Vladimír (referee) ; Polčák, Libor (advisor)
This thesis focuses on methods for fast recognition of application protocols. Fast recognition is recognition with minimal delay from the time of capturing the first data packet sent from the source node. This thesis describes possible techniques and methods for recognition of application protocols and basic information and description of reference system for lawful interception in computer networks. Furthermore, the thesis describes analysis, design and implementation phase of a tool for fast recognition of application protocols. The conclusion of this thesis describes the results of tests performed by the tool and shows its limitations and possible extensions.
|
|
|
Fast Detection of Application Protocols
Grochol, David ; Vašíček, Zdeněk (referee) ; Sekanina, Lukáš (advisor)
Master thesis is focused on classification of application protocols based on application data taken from layer L7 of ISO/OSI model. The aim of the thesis is to suggest a classifier for SDM system (Software defined monitoring) so it could be used for links with throughput up to 100 Gb/s. At the same time it should classify with the fewest possible errors.Designed classifier consists of two parts. First part depicts encoders for encoding selected attributes. Second part deals with evaluating circuit which detects series characteristic for particular application protocols on the output from the first part. Considered attributes and series are taken from statistic analyzes of application protocol data.The classifier itself is designed so it can be implemented in FPGA and enables modification set of application protocols who intended for classification. The quality of designed classifier is tested on real network data. The results of classification are compared with current methods used for classification of application protocols.
|
|
|
The realization of the data communication for application to the mobile networks
Sodomka, Lukáš ; Růčka, Lukáš (referee) ; Jelínek, Mojmír (advisor)
Thesis deals with data technology, which can be used for communication between mobile and IP networks. The aim of the project is to design data communication and the subsequent implementation of the mobile and IP networks. First of all, it made an introduction to telecommunications systems with focus on GSM. Subsequently, the work examines data provided by GSM technology standard with a focus on GPRS, which is in the other chapters discusses in more detail. The resulting communication application protocol is designed in two versions, which is achieved by the creation of an autonomous system. Communication is implemented using JAVA programming language, which created an application client, server and implemented application protocol. Client application is tested on a mobile phone with Internet connection with support for GPRS technology. Server application is installed on a PC workstation, which is assigned a public IP address, it is easily addressable from the Internet.
|
guest ::
