NES@FIT - Networks and distributed systems research group

• Design, specification and analysis of computer communication
• Communication of embedded systems, mobile networking, Internet of Things (project IGA).
• Detection and analysis of encrypted traffic (project ETA, project FETA).
• Network forensic tools (project Netfox, project Tarzan)
• IoT monitoring and security (project Ironstone, project IGA)
• Security of industrial communication (project Bonnet, project Tractor)
• Design of new network architecture (project PRISTINE)
• Network modeling and simulation (project ANSAINET)
• Recursive internetwork architecture (RINA) simulator (projekt RINASIM)
• Monitoring, security and quality measurement of network communication with focus on voice and video transmissions

• Université Grenoble Alpes, Grenoble, France
• University of New Haven, New Haven, USA
• Linköping University, Linköping, Sweden
• University Strathmore, Nairobi, Kenya
• Hallym University, Chuncheon, South Korea
• Flowmon Networks, Brno, Czech Republic
• Netsearch, Brno, Czech Republic
• CESNET, Czech Republic
• Free Software Foundation, Boston, USA

• Network Forensics Tool NetFox Detective, see http://netfox.fit.vutbr.cz
• Password Recovery Tool Wrathion, see http://fitcrack.fit.vutbr.cz/.
• IPv6 monitoring and security, see http://6lab.cz/
• ANSAINET project: network modeling and simulation in OMNeT++, see https://ansa.omnetpp.org/
• RINASim project: Recursive InterNetwork Architecture (RINA) Simulator, see https://rinasim.omnetpp.org/
• Web Browser Security and Privacy - project JShelter

Within the research group, it is possible to work on bachelor's and master's thesis projects on topics that are derived from the current research of the NES group:

Internet security, network forensics

• Using node reputation to detect cyber threats in the network (MT, Petr Matoušek)
• Signature-based detection of application protocols (BT, Jan Pluskal)
• Application protocol recognition using machine learning on the Azure platform (BT/MT, Jan Pluskal)
• Application protocol recognition using machine learning on Google Cloud Platform (BT/MT, Jan Pluskal)
• Automatic extraction of application protocol signatures (MT, Jan Pluskal)
• Advanced visualization of network forensic data (BT/MT, Jan Pluskal)
• Porting Plaso extractors to the Apache Spark platform (MT, Marek Rychlý)
• Analysis of encrypted communication using machine learning (BT/MT, Ondřej Ryšavý)
• Detection of malware communication from network flows (BT/MT, Ondřej Ryšavý)
• Identification of network applications from encrypted communication (BT/MT, Ondřej Ryšavý)
• Creating and analyzing context for network flows (BT/MT, Ondřej Ryšavý)
• Security analysis of SIEM data (BT/MT, Ondřej Ryšavý)
• Detection of phishing sites using machine learning methods (BT/MT, Radek Hranický)
• Detection of malware domains using machine learning methods (BT/MT, Radek Hranický)
• Internet censorship (BT/MT, Pavel Očenášek)
• Anomaly detection in network traffic (BT/MT, Pavel Očenášek)

Digital Forensic Analysis

• Detection of APT from indicators of compromise (BT/MT, Ondřej Ryšavý)
• Cracking passwords with Rainbow Tables on GPUs (BT/MT, Radek Hranický)
• Automated planning of password attacks (BT, Radek Hranický)
• Automated generation of password modification rules using machine learning methods (BT/MT, Radek Hranický)
• Optimization of highly demanding tasks in the Fitcrack system (MT, Radek Hranický)

Web applications

• Development of JShelter extension (BT/MT, Libor Polčák)
• Web crawling and statistics creation (used API, ads, tracking, etc.) (BT/MT, Libor Polčák)
• Security risks of sensors in mobile devices (BT, Radek Hranický)
• Simulating the movement of a mobile device in a human hand (MT, Radek Hranický)
• Simulation of human web browsing (BT/MT, Radek Hranický)
• Generation of anomalous web traffic (MT, Radek Hranický)
• Detection of unwanted requests on the web (BT/MT, Radek Hranický)

Cryptocurrencies

• Using Network Intelligence to Deanonymize Cryptocurrency Users (MT, Vladimír Veselý)

Mobile communication

• Automated creation of mobile application fingerprints (BT, Petr Matoušek)
• Malware detection in TLS communication (MT, Petr Matoušek)
• Integration of SIP voice call into IRC client or gateway (BT, Marek Rychlý)
• Extension of Locus map application for unit communication on the battlefield (BT, Radek Hranický)
• Mobile application for coordination of units on the battlefield (MT, Radek Hranický)

Internet of Things

• Security analysis of IoT communication based on flows (BT/MT, Ondřej Ryšavý)
• Risk analysis of sensor networks, IoT and remote energy readings (BT/MT, Libor Polčák)
• Running service environments in Edge cloud deployments (MT, Marek Rychlý)
• Controlling active LEGO Technic elements from EV3 environment (BT, Radek Hranický)
• Controlling LEGO Powered-up Hub from EV3 environment (BT, Radek Hranický)

Industrial networks, SCADA systems

• Attack detection in IEC 104 communication in smart grids (MT, Petr Matoušek)
• Anomaly detection in industrial communication CIP (Control Industrial Protocol) (BT/MT, Petr Matoušek)
• Using neural networks for anomaly detection in ICS communication (MT, Petr Matoušek)
• Anonymization of communication in industrial networks (BT/MT, Petr Matoušek)
• Applications for statistical analysis of ICS communication (BT, Ivana Burgetová)
• Periodicity detection in ICS communication (BT, Ivana Burgetová)

Design, simulation and modelling of networks, P2P networks

• Emulation of P2P network behaviour (MT, Petr Matoušek)

Monitoring and management of computer networks 

• Analysis of methods for outlier detection (BT/MT, Ivana Burgetová)
• Dynamic networks with mixed topology using WireGuard protocol (MT, Marek Rychlý)
• Mobile application for exporting Android device metrics to Prometheus database (BT, Marek Rychlý)
• Prometheus exporter for network devices (BT, Matěj Grégr)
• API for processing NetFlow data in Go language (MT, Matěj Grégr)

Operating systems

• Port block allocation for address translation in iptables (MT, Matěj Grégr)
• Finding the pattern of DDoS attacks from Netflow data (BT/MT, Matěj Grégr)
• Stateless NAT for Linux kernel (MT, Matěj Grégr)
• Atomic operating system update (BT, Matěj Grégr)
• Adaptation of binary distributed software in NixOS (BT, Marek Rychlý)
• Idempotent OpenWrt build using Nix (MT, Marek Rychlý)
• Integration of different software repositories in Nix (MT, Marek Rychlý)
• Raspberry Pi 4 cluster management using Nix with Nix Flakes (MT, Marek Rychlý)

Company assignments

• Neural network transformer for natural language processing, AT&T (BT, Petr Matoušek)
• Using machine learning for time series prediction in computer communication, AT&T (MT, Petr Matoušek)
• Improving Machine Learning Models with Genetic Programming, AT&T (MT, Petr Matoušek)

The above BT and MT topics are announced for the academic year 2023/2024.

Further information on the topics will be provided by the topic leader, who is listed in brackets. If a topic is listed as a BT/MT type, this means that it can be written as a Bachelor's thesis (simplified assignment) or a Master's thesis (extended version).

Those interested in topics should contact the topic leader, who will enter the selected assignment into the BUT IS.

Last update 25 July 2023.

 

Doc. Ing. Ondřej Ryšavý, PhD., phone. +420-54114 1108, e-mail: rysavy@fit.vutbr.cz