Thesis Details

Detekce útoku uhádnutí hesla v síťovém provozu

Bachelor's Thesis Student: Hurta Marek Academic Year: 2014/2015 Supervisor: Žádník Martin, Ing., Ph.D.
English title
Detection of Brute-Force Password Attack in Network Traffic
Language
Czech
Abstract

This bachelor's thesis is aimed at monitoring of computer networks using IP flows. It describes NEMEA framework which is used for creating modules. These modules are able to detect network anomalies and attacks. Next part describes a few methods how SSH, RDP and Telnet protocols could be attacked. Following chapters analyze some types of attacks such as Dictionary or

Brute-Force attack and tries to find their common characteristics. Based on this analysis, signature of attack is created. Proposed detection algorithm uses these signatures for computing detection thresholds which are used in histogram analysis. Finally, results of proposed detection algorithm are compared with the results from other known methods.
Keywords

Nemea, NetFlow, SSH, RDP, Telnet, Detection of Brute-Force password attack, Histogram analysis

Department
Degree Programme
Information Technology
Files
Status
defended, grade B
Date
17 June 2015
Reviewer
Committee
Švéda Miroslav, prof. Ing., CSc. (DIFS FIT BUT), předseda
Bartík Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Beran Vítězslav, doc. Ing., Ph.D. (DCGM FIT BUT), člen
Kunovský Jiří, doc. Ing., CSc. (DITS FIT BUT), člen
Martínek Tomáš, doc. Ing., Ph.D. (DCSY FIT BUT), člen
Citation
HURTA, Marek. Detekce útoku uhádnutí hesla v síťovém provozu. Brno, 2015. Bachelor's Thesis. Brno University of Technology, Faculty of Information Technology. 2015-06-17. Supervised by Žádník Martin. Available from: https://www.fit.vut.cz/study/thesis/16958/
BibTeX
@bachelorsthesis{FITBT16958,
    author = "Marek Hurta",
    type = "Bachelor's thesis",
    title = "Detekce \'{u}toku uh\'{a}dnut\'{i} hesla v s\'{i}\v{t}ov\'{e}m provozu",
    school = "Brno University of Technology, Faculty of Information Technology",
    year = 2015,
    location = "Brno, CZ",
    language = "czech",
    url = "https://www.fit.vut.cz/study/thesis/16958/"
}
Back to top