Department of Information Systems

Integrated platform for analysis of digital data from security incidents

Czech title:Integrovaná platforma pro zpracování digitálních dat z bezpečnostních incidentů
Reseach leader:Matoušek Petr
Team leaders:Burget Radek, Grégr Matěj, Polčák Libor, Rychlý Marek, Ryšavý Ondřej, Veselý Vladimír
Team members:Hranický Radek, Pluskal Jan, Podermański Tomáš (CVIS VUT)
Agency:Ministry of Interior of the Czech Republic
Code:VI20172020062
Start:2017-01-01
End:2020-06-30
Files: 
+Type Name Title Size Last modified
iconSeminar-06-20179.2017-06-06 12:03:49
^ Select all
With selected:
Keywords:network security, forensics data analysis, cyber crime, machine learning, data mining
Annotation:
The proposed project deals with the experimental development of advanced methods and tools of network security analysis based on data mining, machine learning, visual analytics and their implementation as a forensic platform. The project outcome will be demonstrated using practical cases studies, namely, identification of P2P traffic, forensics analysis of mobile devices and investigation of Bitcoin incidents.

Products

2018Banana Pi BPI-R2 Cluster Prototype, specimen, 2018
Authors: Letavay Viliam, Pluskal Jan, Jeřábek Kamil
 Java library for PCAP files processing in Apache SPARK, software, 2018
Authors: Béder Michal, Ryšavý Ondřej
2017AppIdent - Tool for Network Application Protocols Identification, software, 2017
Authors: Pluskal Jan
 DDoS Generator, software, 2017
Authors: Podermański Tomáš
 Nástroj pro zachycení síťové komunikace spolu s identifikací aplikací na platformách Windows, Linux, (BSD), software, 2017
Authors: Zuzelka Jozef, Pluskal Jan, Ryšavý Ondřej, Matoušek Petr
 Netfox Detective 2.0 - Tool for Network Forensic Analysis, software, 2017
Authors: Pluskal Jan
 RDF4J Class Builder, software, 2017
Authors: Burget Radek
 Timeline Analyzer, software, 2017
Authors: Burget Radek
 Tool for data extraction from Android devices, software, 2017
Authors: Bažík Martin, Matoušek Petr
 Tool for detection of mobile device in network communication, software, 2017
Authors: Havlík Jan, Matoušek Petr

Preceding projects

2014Research and application of advanced methods in ICT, BUT, FIT-S-14-2299, 2014-2016, completed
Research leader: Matoušek Petr
Team leaders: Bartík Vladimír, Burget Radek, Honzík Jan M., Hruška Tomáš, Kreslíková Jitka, Křivka Zbyněk, Květoňová Šárka, Masařík Karel, Meduna Alexander, Očenášek Pavel, Přikryl Zdeněk, Rychlý Marek, Ryšavý Ondřej, Ščuglík František, Švéda Miroslav, Trchalík Roman, Zendulka Jaroslav
2010Modern Tools for Detection and Mitigation of Cyber Criminality on the New Generation Internet, MV CR, VG20102015022, 2010-2015, completed
Research leader: Matoušek Petr
Team leaders: Herout Adam, Kořenek Jan, Lampa Petr, Martínek Tomáš, Podermański Tomáš, Ryšavý Ondřej, Zemčík Pavel

Publications

2018MATOUŠEK Petr and SCHMIEDECKER Martin. Digital Forensics and Cyber Crime. Cham: Springer International Publishing, 2018. ISBN 978-3-319-73697-6.
 PLUSKAL Jan, LICHTNER Ondrej and RYŠAVÝ Ondřej. Traffic Classification and Application Identification in Network Forensics. In: Fourteenth Annual IFIP WG 11.9 International Conference on Digital Forensics. New Delhi: Springer International Publishing, 2018, pp. 161-181. ISBN 978-3-319-99277-8.
2017BURGET Radek. Sociální sítě: Sběr a analýza dat v souvislosti s bezpečnostními incidenty. Brno: Faculty of Information Technology BUT, 2017.
 HRANICKÝ Radek, ZOBAL Lukáš, VEČEŘA Vojtěch and MATOUŠEK Petr. Distributed Password Cracking in a Hybrid Environment. In: Proceedings of SPI 2017. Brno: University of defence in Brno, 2017, pp. 75-90. ISBN 978-80-7231-414-0.
 PLUSKAL Jan and RYŠAVÝ Ondřej. Detection, and Analysis of SIP Fraud Attack on 100Gb Ethernet with NEMEA System. Pristina, 2017.
 PLUSKAL Jan. Netfox Detective 2.0 - Nástroj pro síťovou forenzní analýzu. FIT-TR-2017-06, 2017.
 PLUSKAL Jan, LICHTNER Ondrej and RYŠAVÝ Ondřej. Netfox Detective - Identifikace aplikačních protokolů pomocí algoritmů strojového učení. FIT-TR-2017-05, 2017.
 POLČÁK Libor. Základní informace o síti Tor. FIT-TR-2017-01, Brno, 2017.
 RYCHLÝ Marek and RYŠAVÝ Ondřej. TARZAN: An Integrated Platform for Security Analysis. In: Proceedings of the 2017 Federated Conference on Computer Science and Information Systems. Praha: IEEE Computer Society, 2017, pp. 561-567. ISBN 978-83-946253-7-5.
 VONDRÁČEK Martin, PLUSKAL Jan and RYŠAVÝ Ondřej. Automation of MitM Attack on Wi-Fi Networks. In: 9th International Conference on Digital Forensics & Cyber Crime. Prague: Springer International Publishing, 2017, pp. 207-220. ISBN 978-3-319-73696-9. ISSN 1867-8211.

Your IPv4 address: 54.161.100.24
Switch to IPv6 connection

DNSSEC [dnssec]