Thesis Details
Network Forensics Tools Survey and Taxonomy
This master's thesis addresses network forensic tools survey and taxonomy. It describes network forensics fundamentals, including network forensic process models, techniques, and evidence sources. Furthermore, the project contains a survey of existing network forensic tools taxonomies, including their comparison, followed by the network forensic tools survey. In addition to the tools mentioned in the taxonomy survey, the survey is extended to other network tools. Subsequently, the detailed description and comparison of available datasets that can be analyzed using the forensic tools are provided in this project. According to the information obtained from surveys, frequent use cases for forensic tools are designed, and the tools are demonstrated within the description of individual use cases. In addition to publicly available datasets, the demonstration also uses newly created datasets described in detail in its chapter. Based on the gained information, new taxonomy is designed. This taxonomy is based on the use cases of the tools in contrast to other taxonomies based on NFATs and NSM tools, user interface, capturing the data, analysis, or type of forensics.
taxonomy, survey, overview, network forensic tools, datasets, network forensics, GitHub Pages
Hruška Tomáš, prof. Ing., CSc. (DIFS FIT BUT), člen
Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS FIT BUT), člen
Meduna Alexander, prof. RNDr., CSc. (DIFS FIT BUT), člen
Polčák Libor, Ing., Ph.D. (DIFS FIT BUT), člen
Rychlý Marek, RNDr., Ph.D. (DIFS FIT BUT), člen
@mastersthesis{FITMT23022, author = "Martina Zembjakov\'{a}", type = "Master's thesis", title = "Network Forensics Tools Survey and Taxonomy", school = "Brno University of Technology, Faculty of Information Technology", year = 2021, location = "Brno, CZ", language = "english", url = "https://www.fit.vut.cz/study/thesis/23022/" }