Project Details

Integrovaná platforma pro zpracování digitálních dat z bezpečnostních incidentů

Project Period: 1. 1. 2017 - 30. 6. 2020

Project Type: grant

Code: VI20172020062

Agency: Ministry of Interior of the Czech Republic

Program: Bezpečnostní výzkum České republiky 2015-2020

English title
Integrated platform for analysis of digital data from security incidents
Type
grant
Keywords

network security, forensics data analysis, cyber crime, machine learning, data mining

Abstract

The proposed project deals with the experimental development of advanced methods and tools of network security analysis based on data mining, machine learning, visual analytics and their implementation as a forensic platform. The project outcome will be demonstrated using practical cases studies, namely, identification of P2P traffic, forensics analysis of mobile devices and investigation of Bitcoin incidents.

Team members
Matoušek Petr, doc. Ing., Ph.D., M.A. (UIFS FIT VUT) , research leader
Burget Radek, doc. Ing., Ph.D. (UIFS FIT VUT) , team leader
Burgetová Ivana, Ing., Ph.D. (UIFS FIT VUT) , team leader
Grégr Matěj, Ing., Ph.D. (UIFS FIT VUT) , team leader
Hranický Radek, Ing., Ph.D. (UIFS FIT VUT) , team leader
Hynek Jiří, Ing., Ph.D. (UIFS FIT VUT) , team leader
Jeřábek Kamil, Ing., Ph.D. (UIFS FIT VUT) , team leader
Pluskal Jan, Ing., Ph.D. (UIFS FIT VUT) , team leader
Podermański Tomáš, Ing. (CVIS VUT) , team leader
Polčák Libor, Ing., Ph.D. (UIFS FIT VUT) , team leader
Rychlý Marek, RNDr., Ph.D. (UIFS FIT VUT) , team leader
Ryšavý Ondřej, doc. Ing., Ph.D. (UIFS FIT VUT) , team leader
Veselý Vladimír, Ing., Ph.D. (UIFS FIT VUT) , team leader
Files
Publications

2021

  • MATOUŠEK Petr, BURGETOVÁ Ivana, RYŠAVÝ Ondřej and VICTOR Malombe. On Reliability of JA3 Hashes for Fingerprinting Mobile Applications. In: Digital Forensics and Cyber Crime. ICDF2C 2020. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol. 351. Boston: Springer International Publishing, 2021, pp. 1-22. ISBN 978-3-030-68733-5. Detail

2020

  • BURGET Radek and RYCHLÝ Marek. Extrakce událostí ze souborových systémů - Návrh a implementace distribuované architektury. FIT-TR-2020-08, Brno: Faculty of Information Technology BUT, 2020. Detail
  • MATOUŠEK Petr, BURGETOVÁ Ivana and VICTOR Malombe. Mobile Device Fingerprinting. FIT-TR-2020-05, Brno, 2020. Detail
  • POLČÁK Libor. Soukromí uživatelů v prostředí internetové reklamy na českém webu. DSM Data Security Management, vol. 2020, no. 1, pp. 11-16. ISSN 1211-8737. Detail
  • HRANICKÝ Radek, ZOBAL Lukáš, VEČEŘA Vojtěch, MÚČKA Matúš, HORÁK Adam, BOLVANSKÝ Dávid and ŽENČÁK Tomáš. The architecture of Fitcrack distributed password cracking system, version 2. FIT-TR-2020-04, Brno: Faculty of Information Technology BUT, 2020. Detail

2019

  • JEŘÁBEK Kamil. Big Data cluster založený na kontejnerech. FIT-TR-2019-04, Brno: Faculty of Information Technology BUT, 2019. Detail
  • JEŘÁBEK Kamil and RYŠAVÝ Ondřej. Big Data Network Flow Processing Using Apache Spark. In: Proceedings of the 6th Conference on the Engineering of Computer Based Systems (ECBS 2019), 2019. Bukurešť: Association for Computing Machinery, 2019, pp. 1-9. ISBN 978-1-4503-7636-5. Detail
  • VESELÝ Vladimír. Cryptocurrency Investigation Workshop. Kuala Lumpur, 2019. Detail
  • HRANICKÝ Radek, ZOBAL Lukáš, RYŠAVÝ Ondřej and KOLÁŘ Dušan. Distributed password cracking with BOINC and hashcat. Digital Investigation, vol. 30, no. 1, 2019, pp. 161-172. ISSN 1742-2876. Detail
  • JEŘÁBEK Kamil. DNS Over HTTPS Analysis and Detection in Regular HTTPS. FIT-TR-2019-05, Brno: Faculty of Information Technology BUT, 2019. Detail
  • VESELÝ Vladimír. Hunting Down Cryptocurrency Users. Dubaj, 2019. Detail
  • VESELÝ Vladimír. Hunting Down Cryptocurrency Users. Praha, 2019. Detail
  • HRANICKÝ Radek, MIKUŠ Dávid and ZOBAL Lukáš. Lámání hesel pomocí pravděpodobnostních gramatik. FIT-TR-2019-03, Brno: Faculty of Information Technology BUT, 2019. Detail
  • BURGET Radek. Model-Based Integration of Unstructured Web Data Sources Using Graph Representation of Document Contents. In: 15th International Conference on Web Information Systems and Technologies. Vienna: SciTePress - Science and Technology Publications, 2019, pp. 326-333. ISBN 978-989-758-386-5. Detail
  • HRANICKÝ Radek, LIŠTIAK Filip, MIKUŠ Dávid and RYŠAVÝ Ondřej. On Practical Aspects of PCFG Password Cracking. In: Data and Applications Security and Privacy. Charleston: Springer Nature Switzerland AG, 2019, pp. 43-60. ISBN 978-3-030-22478-3. ISSN 0302-9743. Detail
  • PLUSKAL Jan and VESELÝ Vladimír. SSL/TLS Interception Workshop. Praha, 2019. Detail
  • PLUSKAL Jan and VESELÝ Vladimír. SSL/TLS Interception Workshop (TLS1.3 edition). Kuala Lumpur, 2019. Detail
  • VESELÝ Vladimír. Towards Fully Automated Infinitely Scalable and Maximally Effective Password Cracking of Encrypted Documents. Dubai, 2019. Detail
  • VESELÝ Vladimír. Towards Fully Automated Infinitely Scalable and Maximally Effective Password Cracking of Encrypted Documents. Praha, 2019. Detail
  • POLČÁK Libor. Wireless M-Bus: Kdo ví, že perete?. DSM Data Security Management, vol. 2019, no. 4, pp. 13-17. ISSN 1211-8737. Detail
  • VESELÝ Vladimír. Workshop on Evidence Collection and Analysis of Webpages. Kuala Lumpur, 2019. Detail

2018

  • VONDRÁČEK Martin, PLUSKAL Jan and RYŠAVÝ Ondřej. Automated Man-in-the-Middle Attack Against Wi-Fi Networks. The Journal of Digital Forensics, Security and Law, vol. 2018, no. 13, pp. 59-80. ISSN 1558-7215. Detail
  • RYCHLÝ Marek and RYŠAVÝ Ondřej. Big Data Security Analysis with TARZAN Platform. Journal of Cyber Security and Mobility, vol. 8, no. 2, 2018, pp. 165-188. ISSN 2245-1439. Detail
  • POLČÁK Libor. Co skrývá síť BitTorrent?. FIT-TR-2018-05, Brno, 2018. Detail
  • VESELÝ Vladimír. Cryptocurrency Forensics Utilizing a Multi-currency Blockchain Explorer. Praha, 2018. Detail
  • MATOUŠEK Petr and SCHMIEDECKER Martin. Digital Forensics and Cyber Crime. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering. Cham: Springer International Publishing, 2018. ISBN 978-3-319-73697-6. Detail
  • HRANICKÝ Radek, ZOBAL Lukáš, VEČEŘA Vojtěch and MÚČKA Matúš. Distribuce výpočtů pro nástroj hashcat. FIT-TR-2018-04, Brno, 2018. Detail
  • BURGET Radek. Distribuované zpracování a analýza dat ze sociálních sítí - Návrh a implementace distribuované architektury. FIT-TR-2018-07, Brno: Faculty of Information Technology BUT, 2018. Detail
  • VESELÝ Vladimír. Hunting Down Cryptocurrency Users. Kuala Lumpur, 2018. Detail
  • VESELÝ Vladimír and PLUSKAL Jan. SSL/TLS Interception Workshop. Kuala Lumpur, 2018. Detail
  • HRANICKÝ Radek, ZOBAL Lukáš, VEČEŘA Vojtěch and MÚČKA Matúš. The architecture of Fitcrack distributed password cracking system. FIT-TR-2018-03, Brno: Faculty of Information Technology BUT, 2018. Detail
  • PLUSKAL Jan and VESELÝ Vladimír. TLS/SSL Decryption Workshop. Praha, 2018. Detail
  • VESELÝ Vladimír. Towards Fully Automated Infinitely Scalable and Maximally Effective Password Cracking of Encrypted Documents. Kuala Lumpur, 2018. Detail

2017

  • PLUSKAL Jan and RYŠAVÝ Ondřej. Detection, and Analysis of SIP Fraud Attack on 100Gb Ethernet with NEMEA System. Pristina, 2017. Detail
  • VESELÝ Vladimír. Detekce kryptoměnových těžařů. FIT-TR-2017-03, Brno, 2017. Detail
  • MATOUŠEK Petr. Detekce mobilních zařízení v síťové komunikaci. FIT-TR-2017-08, Brno: Faculty of Information Technology BUT, 2017. Detail
  • HRANICKÝ Radek, ZOBAL Lukáš, VEČEŘA Vojtěch and MATOUŠEK Petr. Distributed Password Cracking in a Hybrid Environment. In: Proceedings of SPI 2017. Brno: University of Defence in Brno, 2017, pp. 75-90. ISBN 978-80-7231-414-0. Detail
  • PLUSKAL Jan, LICHTNER Ondrej and RYŠAVÝ Ondřej. Netfox Detective - Identifikace aplikačních protokolů pomocí algoritmů strojového učení. FIT-TR-2017-05, 2017. Detail
  • PLUSKAL Jan. Netfox Detective 2.0 - Nástroj pro síťovou forenzní analýzu. FIT-TR-2017-06: Faculty of Information Technology BUT, 2017. Detail
  • RYCHLÝ Marek and RYŠAVÝ Ondřej. Platforma pro zpracovaní dat síťové forenzní analýzy. FIT-TR-2017-07, Brno, 2017. Detail
  • BURGET Radek. Sociální sítě: Sběr a analýza dat v souvislosti s bezpečnostními incidenty. FIT-TR-2017-11, Brno: Faculty of Information Technology BUT, 2017. Detail
  • RYCHLÝ Marek and RYŠAVÝ Ondřej. TARZAN: An Integrated Platform for Security Analysis. In: Proceedings of the 2017 Federated Conference on Computer Science and Information Systems. Annals of Computer Science and Information Systems, Volume 11. Praha: IEEE Computer Society, 2017, pp. 561-567. ISBN 978-83-946253-7-5. Detail
  • POLČÁK Libor. Základní informace o síti Tor. FIT-TR-2017-01, Brno, 2017. Detail
Products

2020

  • Digital forensic platform, specimen, 2020
    Authors: Burget Radek, Jeřábek Kamil, Matoušek Petr, Polčák Libor, Rychlý Marek, Ryšavý Ondřej, Veselý Vladimír, Hynek Jiří Detail
  • JavaScript Restrictor, software, 2020
    Authors: Polčák Libor, Timko Martin, Pohner Pavel, Horňák Peter, Červinka Zbyněk, Bednář Martin Detail
  • Tool for mobile app fingerprinting, software, 2020
    Authors: Matoušek Petr Detail
  • Toreator, software, 2020
    Authors: Polčák Libor Detail

2019

  • Big Data Containerized Cluster, software, 2019
    Authors: Jeřábek Kamil Detail
  • DeMixer, software, 2019
    Authors: Veselý Vladimír, Anton Matyáš Detail
  • proof_platform: Platform for automated analysis and archiving of data from the web, software, 2019
    Authors: Kocman Tomáš, Polčák Libor Detail
  • Tool for Distributed Extraction of Timestamped Events from Files, software, 2019
    Authors: Rychlý Marek, Burget Radek Detail
  • Tool for mobile device profiling using network communication, software, 2019
    Authors: Matoušek Petr Detail
  • Winit, software, 2019
    Authors: Kocman Tomáš, Polčák Libor Detail

2018

  • A Tool for Distributed Data Acquisition from Social Networks, software, 2018
    Authors: Tutko Jakub, Burget Radek Detail
  • Banana Pi BPI-R2 Cluster Prototype, specimen, 2018
    Authors: Letavay Viliam, Pluskal Jan, Jeřábek Kamil Detail
  • Cryptoalarm, software, 2018
    Authors: Veselý Vladimír, Vokráčko Lukáš Detail
  • DHT-crawler, software, 2018
    Authors: Vaško Martin, Polčák Libor Detail
  • Distributed Forensic Digital Data Repository, software, 2018
    Authors: Josefík Martin, Rychlý Marek Detail
  • Docker Infrastructure for TARZAN Platform, software, 2018
    Authors: Rychlý Marek Detail
  • Fitcrack 2.0, specimen, 2018
    Authors: Hranický Radek, Zobal Lukáš, Večeřa Vojtěch, Múčka Matúš Detail
  • Java library for PCAP files processing in Apache SPARK, software, 2018
    Authors: Béder Michal, Ryšavý Ondřej Detail
  • NTPAC - Network Traffic Packet Analysing Cluster, software, 2018
    Authors: Letavay Viliam, Pluskal Jan Detail
  • sMaSheD - Mining server detector, software, 2018
    Authors: Veselý Vladimír, Kelečéni Jakub, Cagaš Martin Detail
  • System for DDoS attack mitigation using commodity hardware, specimen, 2018
    Authors: Nagy Peter, Grégr Matěj, Podermański Tomáš Detail

2017

  • AppIdent - Tool for Network Application Protocols Identification, software, 2017
    Authors: Pluskal Jan Detail
  • DDoS Generator, software, 2017
    Authors: Podermański Tomáš Detail
  • Netfox Detective 2.0 - Tool for Network Forensic Analysis, software, 2017
    Authors: Pluskal Jan Detail
  • Network communication capturing tool with additional application protocol metadata for Windows, Linux, and BSD, software, 2017
    Authors: Zuzelka Jozef, Pluskal Jan, Ryšavý Ondřej, Matoušek Petr Detail
  • RDF4J Class Builder, software, 2017
    Authors: Burget Radek Detail
  • Timeline Analyzer, software, 2017
    Authors: Burget Radek Detail
  • Tool for data extraction from Android devices, software, 2017
    Authors: Bažík Martin, Matoušek Petr Detail
  • Tool for detection of mobile device in network communication, software, 2017
    Authors: Havlík Jan, Matoušek Petr Detail
Back to top