|
|
Implementation of plugins for JMeter
Švehlák, Milan ; Člupek, Vlastimil (referee) ; Martinásek, Zdeněk (advisor)
This thesis discusses the load testing tool JMeter and its opportunities for expansion by modules carrying out cyber attacks of the type Denial of Service (DoS). To begin with, there is a theoretical overview of cyber attacks of this type. The following chapter, talks about the JMeter tool, namely its functions and expansion options. After that, it is proceeded to the actual design and realization of the modules. The module implementing the attack HTTP Flood is created first. This module uses internal functions of the program JMeter. This new module is tested. Next chapter folows the procedure of creating modules, that use external generator of network traffic. Modules SYN Flood, ICMP Flood and NTP Flood are implemented using the generator Trafgen. Module implementing attack Slowloris uses a Python script as a generator of the attack. Finally, all the new modules are tested.
|
|
|
Generator of illegitimate network traffic
Blažek, Ondřej ; Smékal, David (referee) ; Blažek, Petr (advisor)
The diploma thesis deals with the problems of DoS/DDoS attacks and development of a tool, in C lanugage, for generating them. In the first chapter the principles of DoS attacks targeting the internet and transport layers of ISO/OSI model are described and also according to their characteristics divided. Selected attacks on the application layer are also described here in detail togehter with protocols which they are based on. In the following chapter there has been created a comparison of freely available tools, which could be used as a attack generators. The practical part is dedicated to a development of a tool for DoS attacks, especially design, general description and usage. Further there is a summary of the newly created library, including results of web server testing, and extensions of a web interface, which is part of the developed tool.
|
|
|
Detection of Slow HTTP DoS Attacks
Jakubíček, Patrik ; Kováčik, Michal (referee) ; Bartoš, Václav (advisor)
This thesis deals with the detection of Slowloris attack. Based on the findings a detection module for Nemea system is implemented. It analyzes flow records and performs attack detection. Tests have verified that the module can work in real deployment and detect Slowloris attack quite successfully.
|
|
|
Securing web servers against DoS attacks
Bočkai, Maroš ; Martinásek, Zdeněk (referee) ; Sikora, Marek (advisor)
This work concerns the security of information technology, with the main emphasis on the analysis of network traffic during the ongoing denial of service attack. In the introduction, the reader is acquainted with the basic knowledge of the TCP / IP reference model, its layers and the protocols used. Furthermore, there is more detailed specification of DoS attack and the characteristics of selected Slow and Flood types of Dos attacks. In the created test environment, the mentioned attacks are subsequently tested and the collected data is analyzed, which is used to evaluate the results of the vulnerability of web servers to chosen attacks. The collected data are used to implement security features for the system to be able to minimize the effects of attacks.
|
|
|
Slow DoS attacks generator
Krivulčík, Andrej ; Zeman, Václav (referee) ; Sikora, Marek (advisor)
The work is focused on Slow DoS attacks and generating them. There are compared 3 most popular web servers and their defensive modules against this type of attacks. Closed are described network model TCP/IP, protocol HTTP (Hypertext Transfer Protocol), each DoS attack, Slow GET, Slow POST or Slow Read and also flood attacks. Afterwards the attack generator is described, with its functionality.
|
|
|
Cyberattack Generator
Gregr, Filip ; Smékal, David (referee) ; Hajný, Jan (advisor)
This thesis is focused on developing a tool that is capable of generating cyber attacks. In the opening there are introduced some attacks using the ISO/OSI application layer protocols. Specifically, these are attacks known as Slowloris, RUDY, Slow Read, HTTP flood, and dictionary attack on the SSH. These attacks are implemented into an existing DoSgen Linux tool that already contains several famous network attacks. The main part of the thesis is devoted to the description of the tool and to the implementation of its own extension. The created tool is practically tested in an experimental enviroment against the Apache web server. Part of the thesis is the documentation for the improved DoSgen tool.
|
|
|
Advanced generator of modern Slow DoS attacks
Trávník, Kryštof ; Blažek, Petr (referee) ; Sikora, Marek (advisor)
This thesis deals with the development of a modular generator for slow denial-of-service attacks. The theoretical part discusses in detail the evolution of the HTTP protocol, denial of service attacks, selected slow denial of service attacks and finally mentions some existing generators. It is possible to add any number of additional scripts to the created generator, to which a graphical interface is automatically created. The attacks can be further extended to a distributed version using the created bots, which are controlled thanks to the master-slave protocol proposed in this work. During the attack, statistics are generated and presented in real time within the graphical interface or after the attack is completed.
|
|
|
Apache module for the DoS attack mitigation
Ruman, Róbert ; Sikora, Marek (referee) ; Jurek, Michael (advisor)
Táto práca sa venuje mitigácii viacerých typov útokov DoS. Naším cieľom bolo vytvoriť vlastný modul apache, ktorý dokáže zmierniť útoky typu flood, ako aj logické útoky. Modul bol vytvorený v jazyku C pomocou programu VS Code. Po vytvorení modulu sme vykonali viacero testov na získanie údajov, aby sme mohli náš modul porovnať s už existujúcimi modulmi apache. Porovnaním výsledkov testov sme dospeli k záveru, že náš modul dokáže zmierniť oba typy útokov. Výsledky testov sú vizualizované pomocou grafov v prílohe.
|
|
|
Vulnerability testing of cloud solutions by Slowloris attack
Šrámek, Michal ; Sikora, Marek (referee) ; Šeda, Pavel (advisor)
This bachelor's thesis addresses the issue of distributed Slowloris attack implemented in the Apache JMeter module. This module is then used to demonstrate the vulnerability in the Microsoft Azure cloud environment. The outcome of the thesis is an extension of the module, enabling testing from multiple IP addresses. The SlowHTTPTest tool, which the module utilizes for the attack, is also modified. In the introduction, the basic concepts related to cloud services and their classification are established. This is followed by chapters defining the current security threats to the cloud and how they compare between the three largest cloud providers. The technologies and configurations used in Azure environments are also described. Finally, the thesis focuses on modifying the attack module to support multiple addresses and tests it on both local and cloud infrastructures.
|
|
|
Securing web servers against DoS attacks
Bočkai, Maroš ; Martinásek, Zdeněk (referee) ; Sikora, Marek (advisor)
This work concerns the security of information technology, with the main emphasis on the analysis of network traffic during the ongoing denial of service attack. In the introduction, the reader is acquainted with the basic knowledge of the TCP / IP reference model, its layers and the protocols used. Furthermore, there is more detailed specification of DoS attack and the characteristics of selected Slow and Flood types of Dos attacks. In the created test environment, the mentioned attacks are subsequently tested and the collected data is analyzed, which is used to evaluate the results of the vulnerability of web servers to chosen attacks. The collected data are used to implement security features for the system to be able to minimize the effects of attacks.
|
guest ::
