Design and implementation of a framework supporting the detection of malware infected hosts

OData support
Supervisor:
Dr. Buttyán Levente
Department of Networked Systems and Services

Information technology surrounds us, be it used for communication, entertainment or international financial affairs. Like so many others, this technology can be used to achieve both good and malicious goals. It is possible to make the lives of bankers, medical staff and even everyday people easier by the high-speed transmission and processing of data. On the other hand, data theft, the impersonation of others, property theft and even the destruction of entire companies are also possible. In our age it is virtually impossible to completely avoid the negative effects of information technology, since it permeates our daily lives, be it used for banking, administration or just an exchange of letters.

Even though ordinary people are also threatened by the misuse of computing and the internet, enterprises, financial institutions, the infrastructure and military facilities are the more lucrative, obvious targets. Compared to the size of the problem of combating malicious software (so-called malware), the number of people with relevant expertise is low. In the case of a firm commissioning a competent company to inspect their computers, the task is rather difficult even using automated analysis environments, given the large number of computers, their immobility and time constraints.

The topic of this thesis is the design and implementation of a framework that is able to ease and automate the specified task in a corporate environment, in a scalable way. The interests of the companies must be taken into account and the framework has to cause the least possible disruption in their operation.

Downloads

Please sign in to download the files of this thesis.