Modern monitoring tools and methods to guarantee high availability

Subject: Cyber Security II (KB II), Department of Telecommunications, Faculty of electrical engineering and computer science, VSB-TUO Name: Bc. Kryštof Šara (SAR0130) Date of presentation: May 10, 2024 Task syllabus: design and configuration of test topology using network monitoring tools - Zabbix, Nagios, including their configuration description of the methods used to maintain high availability and their practical example introduction As far as modern computational systems are concerned, it is common to ensure those are operational no matter what happens....

May 9, 2024 · 18 min · 3720 words · krusty

IT Audit Checklist

Subject: Computer Attacks and Defence Project No. 1: IT Audit Checklist Name: Bc. Kryštof Šara (SAR0130) Date: 12. 04. 2024 System Which operating system(s) are in use in your organization? How do you ensure these systems are up-to-date? Who is in charge of the system upgrading? Antivirus Do you utilize antivirus software in your organization? When was the last time that software were upgraded? How do you test that that software is functional and operational?...

April 11, 2024 · 4 min · 840 words · krusty

Advanced VPN configuration using WireGuard

Subject: Cyber Security I (KB I), Department of Telecommunications, Faculty of electrical engineering and computer science, VSB-TUO. Name: Bc. Kryštof Šara (SAR0130) Date of presentation: December 15, 2023 Task description: Application description, testbed creation, implementation of some of the most well-known scenarios for VPN - 1: 1 and N: 1, connection of PKI with VPN introduction In the modern era of digital nomadism, where one can roam virtually anywhere around the globe, while still having a connection to public Internet, it is crutial to ensure an additional layer of security for businesses as well as for individuals (public WiFi access points)....

December 8, 2023 · 17 min · 3437 words · krusty

Plain HTTP safety in WireGuarded networks

Subject: Cyber Security I (KB I), Department of Telecommunications, Faculty of electrical engineering and computer science, VSB-TUO. Name: Bc. Kryštof Šara (SAR0130) Date of presentation: December 15, 2023 introduction In the modern era, it is a standard to ensure HTTP over SSL/TLS layer (HTTPS) on any web page possible. However, the implementation of Public Key Infrastructure (PKI), such as getting the keys and certificates can be a problem, when using internal domain name systems and internal domains, that are not accessible from the Internet....

December 8, 2023 · 6 min · 1148 words · krusty

monkeVPN

monkeVPN is a simple wireguard project for intersted one to securely browse the web. In detail, one connects to one given endpoint making all traffic between encrypted. This allows one to securely serf the waves on the Internet even when connected to the public transportation hotspot with tens of people lurking for some bandwidth too. As WiFi signal is broadcasted in all ways around the antennae, it is very simple to capture any unencrypted data floating around....

September 4, 2022 · 1 min · 120 words · krusty

Methods and technologies for SRTP media stream decryption

Subject: Multimedia Communication and Content Security (MZKO), Department of Telecommunications, Faculty of electrical engineering and computer science, VSB-TUO. Name: Bc. Kryštof Šara (SAR0130) Task syllabus: master key exchange (symetric cryptography) SRTP-DES exchange, SIP VoIP, SDP session descriptor, RTP stream description (codecs, media type, ports, SRTP master key in bae64) in SIP signalling key distribution problem (MitM-prone) ZRTP and Diffie-Hellmann (DH) alg (MitM-prone and DH implementation in old HW problem) SRTP-DTLS session, WebRTC over DTLS channel, media encryption simulation introduction In the world of a continuous need for communication (preferably in real-time), it is vital for the media stream transportation to be reliable (uninterrupeted), secure (end-to-end encrypted, and fast (UDP/IP, low jitter and RTT)....

15 min · 3107 words · krusty