Please use this identifier to cite or link to this item:

http://hdl.handle.net/10609/119826
Title: Análisis y alerta del tráfico en las comunicaciones mediante técnicas de MitM
Author: Vega Fernández, Sergio
Director: Rifà Pous, Helena  
Tutor: Caparrós Ramírez, Joan
Keywords: network traffic
MitM
security alert
Issue Date: Jun-2020
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: The purpose of this work is to show a solution that allows the detection of strange behaviors that could reveal a possible infection in devices with Internet access through a network traffic analysis. To emulate the purpose, a local network with Internet access has been generated using a WiFi access point implemented in a Raspberry. Through this access point computer devices could access to Internet. This platform will be responsible for analyzing the network traffic generated using man-in-the-middle techniques, by mitmproxy tool. Subsequently, the analyzed traffic will be processed in order to detect future risks. This will be achieved by developing a script written in Python, which will be executed with mitmproxy. In case of detecting strange behaviors the implemented solution will generate alerts in a private Telegram channel, which will allow visualizing the attempts of connections catalogued as suspicious. These connections catalogued as suspicious have been obtained from different reputation lists. The obtained results from the developed product have been satisfactory, because established objectives were met. Even so, it should be mentioned that there is more room for improvement for future lines of work. Finally, the conclusions have been quite positive as far as the generation of a system with these characteristics is concerned, because it is expected to be helpful at a low cost to mitigating risks in the communications of devices with Internet access.
Language: Spanish
URI: http://hdl.handle.net/10609/119826
Appears in Collections:Bachelor thesis, research projects, etc.

Share:
Export:
Files in This Item:
File Description SizeFormat 
svega007TFM0620memoria.pdfMemoria del TFM2.66 MBAdobe PDFView/Open

This item is licensed under a Creative Commons License Creative Commons