EECS4080

User Tools

Site Tools

You are here: EECS 4080.03, EECS 4081.06, EECS 4082.06, EECS 4084.06, EECS 4088.06, EECS 4090.06 and EECS 4480.03 » Proposed Projects for Winter 2016
Trace:
projects

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revisionBoth sides next revision
projects [2011/09/06 19:48] dymondprojects [2011/09/07 01:16] dymond
Line 231: Line 231:
  
 http://www.cse.yorku.ca/museum/collections/MIL/MIL.htm http://www.cse.yorku.ca/museum/collections/MIL/MIL.htm
 +
 +----
 +:
 +----
 +
 +======Web Crawlers Behaving Like Humans: Are We There Yet!? ======
 +
 +**Supervisor**: Natalija Vlajic
 +
 +**Required Background**: General prerequisites
 +
 +
 +__Description__
 +
 +
 +Distributed Denial of Service (DDoS) attacks are recognized as one
 +of the most serious threats to today's Internet due to the relative
 +simplicity of their execution and their ability to severely degrade
 +the quality at which Web-based services are offered to the end users.
 +An especially challenging form of DDoS attacks are the so-called
 +Application-Layer DDoS attacks. Namely:
 +1) In Application-Layer DDoS attacks, the attackers utilize a flood
 +of legitimate-looking Layer-7 network sessions (i.e., sessions that
 +are generally hard to detect and/or filter out by a firewall or an
 +IDS system);
 +2) Increasingly, these sessions comprise HTML requests generated by a
 +cleverly programmed crawler that executes a semi-random walk over the
 +web site links, thereby attempting to appear as a legitimate human
 +visitor.
 +
 +The goal of this project is to investigate the state of the art in
 +malicious web crawler design. In particular, the project will look
 +into the challenges of designing a smart-DDoS-crawler from the
 +attacker point of view - one of these challenges being the estimation
 +of web-page popularity assuming no a priori access to the web-logs
 +of the victim web-site.
 +----
 +:
 +----
 +====== GFI Sandbox  Analysis of Malware for DDoS ======
 +
 +**Supervisor**: Natalija Vlajic
 +
 +**Required Background**: General prerequisites. 
 +
 +
 +__Description__
 +
 +GFI Sandbox is a sophisticated industry-leading tool for quick and
 +safe analysis of malware behaviour. The goals of this project are:
 +1) familiarize yourself with the operation of GFI Sandbox;
 +2) using readily available GFI Sandbox Feeds (i.e., ThreatTrack Feeds),
 +build a database of malware designed specifically for execution of
 +DDoS-attacks - the so-called botnet malware;
 +3) examine the behaviour of the collected malware 'upon execution';
 +4) propose and build an environment - comprising the standard freeware
 +security tools - for longer term (beyond immediate execution) analysis
 +of the collected malware.
 +
  
 ---- ----
 : :
 ---- ----
projects.txt · Last modified: 2016/01/13 20:05 by stevenc