Browse IS/STAG - Portál UTB

Skip to page content
Website UTB
Portal title page UTB
Anonymous user Login Česky
Browse IS/STAG
Login Česky
  • Welcome
  • Browse IS/STAG
  • Applicant
  • Graduate
  • Web services
  • ECTS
  • User Info
Welcome
Browse IS/STAG
Information for applicantsElectronic applicationECTS arrivals
Getting startedAlumni ClubAbsolvent - website
Web services
ECTS
User Info

1st level navigation

  • Welcome
  • Browse IS/STAG
  • Applicant
  • Graduate
  • Web services
  • ECTS
  • User Info
User disconnected from the portal due to long time of inactivity.
Please, click this link to log back in.
(Sessions are disconnected after 240 minutes of inactivity. Note that mobile devices may get disconnected even sooner).

Prohlížení IS/STAG (S025)

Help

Main menu for Browse IS/STAG

  • Programmes and specializations.
  • Courses
  • Departments
  • Lecturers
  • Students
  • Examination dates
  • Timetable events
  • Theses, selected item
  • Pre-regist. study groups
  • Rooms
  • Rooms – all year
  • Free rooms – Semester
  • Free rooms – Year
  • Capstone project
  • Times overlap
  •  
  • Title page
  • Calendar
  • Help

Search for a Thesis

Print/export:  Bookmark this link in your browser so that you may quickly load this IS/STAG page in the future.
Only logged-in user will see student personal numbers.

Dates found, count: 1

Search result paging

Found 1 records Print Export to xls List URL
  Surname Name Title Thesis status   Supervisors Reviewers Type of thesis Date of def. Title
Student Type of thesis - - - - - - - - - -
Item shown in detail Dostál Includes the selected person into the timetable overlap calculation. Jiří A Static Vulnerability Analysis as a Service A Static Vulnerability Analysis as a Service Thesis finished and defended successfully (DUO).   Sysel Martin Mrázek Petr Master's thesis 1598392800000 26.08.2020 A Static Vulnerability Analysis as a Service Thesis finished and defended successfully (DUO).
Jiří Dostál Master's thesis 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX

Thesis info Statická analýza zranitelností systému jako služba

  • Basic data
The document you are accessing is protected by copyright law. Unauthorised use may lead to criminal sanctions.
Name Dostál Jiří Includes the selected person into the timetable overlap calculation.
Acad. Yr. 2019/2020
Assigning department AUIUI
Date of defence Aug 26, 2020
Type of thesis Master's thesis
Thesis status Thesis finished and defended successfully (DUO). Thesis finished and defended successfully (DUO).
Completeness of mandatory entries - All mandatory fields for this Thesis are filled in.
Main topic Statická analýza zranitelností systému jako služba
Main topic in English Static Vulnerability Analysis as a Service
Title according to student Statická analýza zranitelností systému jako služba
English title as given by the student A Static Vulnerability Analysis as a Service
Parallel name -
Subtitle -
Thesis supervisor Sysel Martin, doc. Ing. Ph.D.
External examiner Mrázek Petr, Ing. Ph.D.
Annotation Tato práce pojednává o možnostech detekce zranitelností na systémech Linux s využitím API pro statickou analýzu metadat. Základním stavebním prvkem tohoto systému je vyhledávání dostupných aktualizací seznamu nainstalovaných balíků. Získáním této informace lze s využitím veřejně dostupných služeb zjistit, jakým potenciálním rizikům je analyzovaný systém vystaven. Zjištěním seznamu CVE (Common Vulnerability Exposure) je možné hlouběji porozumět rizikům, které jsou klíčové pro běh analyzovaného prostředí
Annotation in English This thesis deals with the possibilities of vulnerability detection on Linux systems utilizing the API for static metadata analysis. The core of the engine is to search for available updates for the given list of packages. By obtaining this information, it is possible to determine, using publicly available services, what potential risks the analyzed system is exposed to. By looking at the CVE (Common Vulnerability Exposure) list, it is possible to gain a deeper understanding of the risks that are crucial for the runtime of the analyzed environment
Keywords zranitelnost, správa systémů, RPM, bezpečnost, služba, Software as a Service
Keywords in English vulnerability, system management, RPM, security, service, Software as a Service
Length of the covering note 80s
Language CZ
Annotation
Tato práce pojednává o možnostech detekce zranitelností na systémech Linux s využitím API pro statickou analýzu metadat. Základním stavebním prvkem tohoto systému je vyhledávání dostupných aktualizací seznamu nainstalovaných balíků. Získáním této informace lze s využitím veřejně dostupných služeb zjistit, jakým potenciálním rizikům je analyzovaný systém vystaven. Zjištěním seznamu CVE (Common Vulnerability Exposure) je možné hlouběji porozumět rizikům, které jsou klíčové pro běh analyzovaného prostředí
Annotation in English
This thesis deals with the possibilities of vulnerability detection on Linux systems utilizing the API for static metadata analysis. The core of the engine is to search for available updates for the given list of packages. By obtaining this information, it is possible to determine, using publicly available services, what potential risks the analyzed system is exposed to. By looking at the CVE (Common Vulnerability Exposure) list, it is possible to gain a deeper understanding of the risks that are crucial for the runtime of the analyzed environment
Keywords
zranitelnost, správa systémů, RPM, bezpečnost, služba, Software as a Service
Keywords in English
vulnerability, system management, RPM, security, service, Software as a Service
Research Plan
  1. Analyzujte zranitelnost operačního systému Linux.
  2. Popište možnosti detekce zranitelností na systémech Linux.
  3. Využijte databázi zranitelností pro analýzu prostředí a vyhodnocení hrozby.
  4. Rozšiřte již existující systém VMaaS o další funkcionalitu.
  5. Simulačně otestujte program a proveďte rozbor získaných dat.
Research Plan
  1. Analyzujte zranitelnost operačního systému Linux.
  2. Popište možnosti detekce zranitelností na systémech Linux.
  3. Využijte databázi zranitelností pro analýzu prostředí a vyhodnocení hrozby.
  4. Rozšiřte již existující systém VMaaS o další funkcionalitu.
  5. Simulačně otestujte program a proveďte rozbor získaných dat.
Recommended resources
  1. National Institute of Standards and Technology.  Information Technology Laboratory [online]. Dostupné z: https://nvd.nist.gov/
  2. The MITRE Corporation. Common Vulnerabilities and Exposures [online]. Dostupné z: https://cve.mitre.org/
  3. RPM Package Manager: Documentation [online]. Dostupné z: https://rpm.org/documentation.html
  4. Red Hat. Vulnerability service overview [online]. Red Hat Customer Portal . Dostupné z: https://access.redhat.com/documentation/en-us/cloud_management_services_for_red_hat_enterprise_linux/1.0/html/assessing_and_monitoring_vulnerabilities_on_rhel_systems/vulnerability-service-overview-con
  5. Fedora Docs: Versioning Guidelines [online]. Dostupné z: https://docs.fedoraproject.org/en-US/packaging-guidelines/Versioning/
  6. Red Hat. Red Hat Product Errata [online]. Red Hat Customer Portal.  Dostupné z: https://access.redhat.com/errata/#/
  7. Freedesktop: systemd System and Service Manager [online]. Dostupné z: https://www.freedesktop.org/wiki/Software/systemd/
  8. VMaaS Project: Documentation [online]. Dostupné z: https://github.com/RedHatInsights/vmaas/wiki
Recommended resources
  1. National Institute of Standards and Technology.  Information Technology Laboratory [online]. Dostupné z: https://nvd.nist.gov/
  2. The MITRE Corporation. Common Vulnerabilities and Exposures [online]. Dostupné z: https://cve.mitre.org/
  3. RPM Package Manager: Documentation [online]. Dostupné z: https://rpm.org/documentation.html
  4. Red Hat. Vulnerability service overview [online]. Red Hat Customer Portal . Dostupné z: https://access.redhat.com/documentation/en-us/cloud_management_services_for_red_hat_enterprise_linux/1.0/html/assessing_and_monitoring_vulnerabilities_on_rhel_systems/vulnerability-service-overview-con
  5. Fedora Docs: Versioning Guidelines [online]. Dostupné z: https://docs.fedoraproject.org/en-US/packaging-guidelines/Versioning/
  6. Red Hat. Red Hat Product Errata [online]. Red Hat Customer Portal.  Dostupné z: https://access.redhat.com/errata/#/
  7. Freedesktop: systemd System and Service Manager [online]. Dostupné z: https://www.freedesktop.org/wiki/Software/systemd/
  8. VMaaS Project: Documentation [online]. Dostupné z: https://github.com/RedHatInsights/vmaas/wiki
Týká se praxe No
Enclosed appendices 1 CD
Appendices bound in thesis -
Taken from the library No
Full text of the thesis
Appendices
Reviewer's report
Supervisor's report
Defence procedure record file