Thesis Details

Systém pro detekci vzorů v binárních souborech

Master's Thesis Student: Milkovič Marek Academic Year: 2016/2017 Supervisor: Matula Peter, Ing.
English title
System for Pattern Recognition in Binary Files
Language
Czech
Abstract

Malicious software spreads really fast in the age of the Internet and it harms users and their data. Therefore, it is necessary to improve methods of how we deal with its analysis, so we can protect potential victims. This thesis deals with design and implementation of system for generating patterns out of executable files in cooperation with AVG Technologies. The goal of this work is to create a tool that generates a detection pattern from the set of binary files. This work further proposes new types of analyses for extraction of information out of executable files. Designed and implemented system is used in practice for analysis of new malicious code and it is integrated into the clustering system.

Keywords

reverse engineering, pattern recognition, malware, YARA, AVG

Department
Degree Programme
Information Technology, Field of Study Information Technology Security
Files
Status
defended, grade A
Date
21 June 2017
Reviewer
Committee
Hanáček Petr, doc. Dr. Ing. (DITS FIT BUT), předseda
Bartík Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Křivka Zbyněk, Ing., Ph.D. (DIFS FIT BUT), člen
Švéda Miroslav, prof. Ing., CSc. (DIFS FIT BUT), člen
Veselý Vladimír, Ing., Ph.D. (DIFS FIT BUT), člen
Zeman Václav, doc. Ing., Ph.D. (UTKO FEEC BUT), člen
Citation
MILKOVIČ, Marek. Systém pro detekci vzorů v binárních souborech. Brno, 2017. Master's Thesis. Brno University of Technology, Faculty of Information Technology. 2017-06-21. Supervised by Matula Peter. Available from: https://www.fit.vut.cz/study/thesis/20063/
BibTeX
@mastersthesis{FITMT20063,
    author = "Marek Milkovi\v{c}",
    type = "Master's thesis",
    title = "Syst\'{e}m pro detekci vzor\r{u} v bin\'{a}rn\'{i}ch souborech",
    school = "Brno University of Technology, Faculty of Information Technology",
    year = 2017,
    location = "Brno, CZ",
    language = "czech",
    url = "https://www.fit.vut.cz/study/thesis/20063/"
}
Back to top