|
|
Web application for visualization and analysis of correlation rules deployed in cyberspace
Závišková, Hana ; Říha, Kamil (referee) ; Safonov, Yehor (advisor)
In a world of constantly evolving modern technologies, there is a growing need of developing cyber security strategies to protect digital infrastructures as the number of cyber attacks is rapidly increasing. The main goal of the bachelor thesis is to create a tool for visualizing correlation rules of SIEM systems. The tool is implemented as an extension to an existing web application and aims to allow a security expert or application user to explore user Sigma rules according to different criteria and based on different views. From a theoretical point of view, the bachelor’s thesis focuses on introducing the reader to the basics of cyber security in terms of the motivation for providing security, explaining the basic concepts necessary to understand the content of the thesis and analyzing the perspectives in which cyber attacks can be viewed. It also contains a description of selected cyber attacks, the selection of which is based on the statistics of cyber attacks on the Czech Republic for the first three quarters of the year 2023. This is followed by an explanation of the principles of detection and prevention of cyber incidents, technologies for ensuring protection in cyberspace, including the issue of log sources and platforms for detecting information about threats and the principles of cyber incident investigation. This is followed by an introduction to the legal regulation of cyber security, including a description of ENISA recommendations. The practical part of the bachelor thesis is further divided into four chapters. In the first part, an analysis of available web frameworks that can be used in application development and an analysis of the rule visualization methods used in two modern SIEM solutions were performed. The second phase focuses on the design of different views that can be used to provide a pleasant, intuitive and interactive environment for displaying user rules. The visualization designs include the components available in the D3.js library and working with the MITRE ATT&CK matrix. The second phase also includes the creation of a structure for the layout of the elements in the web application. The third phase is oriented towards approaching the actual implementation of the appropriate views that result from the analysis performed in the second phase. It also includes a description of the experimental environment in which the application was developed and how the data was obtained. The last phase focuses on testing the visual part of the application from the user’s perspective. The whole thesis finishes with a conclusion, which summarizes the results of the bachelor’s thesis, which have been achieved, and suggestions for improving the application in the future.
|
|
|
Proposal of Part of Information System as a Support for Managerial Tasks
Mašlej, Jan ; Neuwirth, Bernard (referee) ; Luhan, Jan (advisor)
The goal of this bachelor thesis was to create a design of part of information system, which will help managers streamline customer service and overview in the company POTES s.r.o. The analytical part deals with the current state of company and their processes. Using data and functional modeling, they will acquaint us with the creation of the system backbone and then describe the technologies that will be used for the development of the application itself.
|
|
|
Design and implementation of authentication method for accessing web service in PHP language
Pokorný, Jiří ; Kacálek, Jan (referee) ; Uchytil, Stanislav (advisor)
Bachelor's thesis describes the available principles of authentication for access to Web services. It compares necessary hardware, safety, financial costs, complexity of implementation and difficulty of maintenance and service. The second part deals with the design and implementation of a particular authentication method for access to Web applications in PHP using the MySQL relational database. There is selected the authentication method by SMS code with regards to mentioned characteristics of particular methods. It is also supplemented by the possibility of using a client certificate.
|
|
|
Proposal of Part of Information System as a Support for Managerial Tasks
Mašlej, Jan ; Neuwirth, Bernard (referee) ; Luhan, Jan (advisor)
The goal of this bachelor thesis was to create a design of part of information system, which will help managers streamline customer service and overview in the company POTES s.r.o. The analytical part deals with the current state of company and their processes. Using data and functional modeling, they will acquaint us with the creation of the system backbone and then describe the technologies that will be used for the development of the application itself.
|
|
| |
|
|
Web Application for the Web Changes Tracking
Tisoň, Zdeněk ; Jirák, Ota (referee) ; Ruttkay, Ladislav (advisor)
The goal of the bachelor thesis is to implement web application for the web changes tracking. This application periodically checks web pages for changes and informs users about changes via email. In a design section I describe, what had to be done before implementation and I also describe technologies used in application. The next part of text considers implementation of application parts. The application is implemented in .NET Framework using MS SQL Server database.
|
|
|
Design and implementation of authentication method for accessing web service in PHP language
Pokorný, Jiří ; Kacálek, Jan (referee) ; Uchytil, Stanislav (advisor)
Bachelor's thesis describes the available principles of authentication for access to Web services. It compares necessary hardware, safety, financial costs, complexity of implementation and difficulty of maintenance and service. The second part deals with the design and implementation of a particular authentication method for access to Web applications in PHP using the MySQL relational database. There is selected the authentication method by SMS code with regards to mentioned characteristics of particular methods. It is also supplemented by the possibility of using a client certificate.
|
guest ::
