|
|
A Support of GVFS Caching
Holý, Ondřej ; Zelený, Jan (referee) ; Smrčka, Aleš (advisor)
The master's thesis deals with a support of caching in GVfs (Gnome Virtual filesystem). Basics of caches, cache invalidation, and cache replacement algorithms are described. Description of GIO filesystem abstraction and communication of modules within GVfs is provided next. The disadvantages of individual GVfs modules and, if present, their internal caches are discussed. The thesis proposes three types of cache. The first type of cache is for storing file metadata, the second one for directory listings, and the latter for file content. These caches have been implemented in a prototype and verified with respect to the functionality and performance. The main benefits of the proposed solution are faster work with virtual filesystems and provided missing functionality of lower-level virtual filesystem to GIO abstraction (namely, for instance seek operation).
|
|
|
The Hidden Resources Detector for GNU/Linux
Nečas, Radek ; Rogalewicz, Adam (referee) ; Procházka, Boris (advisor)
The main goal of this thesis was to detect hide resources in GNU/Linux operating systems and analyse tools so called rootkits, which are used to hide system resources. This thesis is devided into two parts, theoretical and practical one. Theoretic part focusses on resource managment, representation, privilege levels and system calls. Practical part covers design and implementation of an abstract detector. Each new detection method is implemented as a plugin. Some of those methods are realized as linux kernel modules. The usability of the detector is compared against real rootkits.
|
|
|
Virtual Filesystem to Access Contents of Archive Files
Samek, Michal ; Očenášek, Pavel (referee) ; Rychlý, Marek (advisor)
This bachelors's thesis describes design and implementation of a console application, which could be used for creation of virtual filesystems from archive files. These virtual filesystems are managed by the means of the FUSE library. Application supports several types of archive files, for some of them even write support is implemented. Support for additional types could be easily integrated via designed interface.
|
|
|
Methods of Linux Kernel Hacking
Procházka, Boris ; Malinka, Kamil (referee) ; Vojnar, Tomáš (advisor)
This bachelor thesis focuses on the Linux kernel security from the attacker perspective. It tries to identify and map all key features and methods used by nowadays cyber-terrorists. One of its aims is to give a comprehensive overview of this topic. At final, it can serve as a small reference for everybody who wants to broaden his knowledge of Linux kernel security. The work consists of four parts. The first part repeats and defines basic notions and taxonomy of operation systems. The second and third part form the core. They cover principles and methods used to hide processes, files, connections, etc. The last chaper is devoted to related issues. A supplement of this bachelor thesis is a set of demonstrating modules, which implement discussed problems involved, and tables, where can be found a comparison of nowadays rootkits.
|
|
|
Methods of Linux Kernel Hacking
Procházka, Boris ; Malinka, Kamil (referee) ; Vojnar, Tomáš (advisor)
This bachelor thesis focuses on the Linux kernel security from the attacker perspective. It tries to identify and map all key features and methods used by nowadays cyber-terrorists. One of its aims is to give a comprehensive overview of this topic. At final, it can serve as a small reference for everybody who wants to broaden his knowledge of Linux kernel security. The work consists of four parts. The first part repeats and defines basic notions and taxonomy of operation systems. The second and third part form the core. They cover principles and methods used to hide processes, files, connections, etc. The last chaper is devoted to related issues. A supplement of this bachelor thesis is a set of demonstrating modules, which implement discussed problems involved, and tables, where can be found a comparison of nowadays rootkits.
|
|
|
Virtual Filesystem to Access Contents of Archive Files
Samek, Michal ; Očenášek, Pavel (referee) ; Rychlý, Marek (advisor)
This bachelors's thesis describes design and implementation of a console application, which could be used for creation of virtual filesystems from archive files. These virtual filesystems are managed by the means of the FUSE library. Application supports several types of archive files, for some of them even write support is implemented. Support for additional types could be easily integrated via designed interface.
|
|
|
The Hidden Resources Detector for GNU/Linux
Nečas, Radek ; Rogalewicz, Adam (referee) ; Procházka, Boris (advisor)
The main goal of this thesis was to detect hide resources in GNU/Linux operating systems and analyse tools so called rootkits, which are used to hide system resources. This thesis is devided into two parts, theoretical and practical one. Theoretic part focusses on resource managment, representation, privilege levels and system calls. Practical part covers design and implementation of an abstract detector. Each new detection method is implemented as a plugin. Some of those methods are realized as linux kernel modules. The usability of the detector is compared against real rootkits.
|
|
|
Attacks on the Linux Operating System in Theory and Practice
Procházka, Boris ; Hanáček, Petr (referee) ; Vojnar, Tomáš (advisor)
This master's thesis deals with Linux kernel security from the attacker's point of view. It maps methods and techniques of disguising the computing resources used by today's IT pirates. The thesis presents a unique method of attack directed on the system call interface and implemented in the form of two tools (rootkits). The thesis consists of a theoretical and a practical part. Emphasis is placed especially on the practical part, which manifests the presented information in the form of experiments and shows its use in real life. Readers are systematically guided as far as the creation of a unique rootkit, which is capable of infiltrating the Linux kernel by a newly discovered method -- even without support of loadable modules. A part of the thesis focuses on the issue of detecting the discussed attacks and on effective defence against them.
|
|
|
A Support of GVFS Caching
Holý, Ondřej ; Zelený, Jan (referee) ; Smrčka, Aleš (advisor)
The master's thesis deals with a support of caching in GVfs (Gnome Virtual filesystem). Basics of caches, cache invalidation, and cache replacement algorithms are described. Description of GIO filesystem abstraction and communication of modules within GVfs is provided next. The disadvantages of individual GVfs modules and, if present, their internal caches are discussed. The thesis proposes three types of cache. The first type of cache is for storing file metadata, the second one for directory listings, and the latter for file content. These caches have been implemented in a prototype and verified with respect to the functionality and performance. The main benefits of the proposed solution are faster work with virtual filesystems and provided missing functionality of lower-level virtual filesystem to GIO abstraction (namely, for instance seek operation).
|
guest ::
