Yazar "Malkawi, Malek" seçeneğine göre listele
Listeleniyor 1 - 3 / 3
Sayfa Başına Sonuç
Sıralama seçenekleri
Öğe Automation of active reconnaissance phase: An automated API-based port and vulnerability scanner(Association for Computing Machinery, Inc, 2021) Malkawi, Malek; Özyer, Tansel; Alhajj, RedaThe unprecedented growth in technology has increased the importance of the required information security that is still hard to be reached. Recently, network and web application attacks have occurred frequently, causing confidential data to be stolen by the available vulnerabilities in the systems and the most prominent is in the form of open ports. This causes the CIA (Confidentiality Integrity and Availability) Triad Model to break. Penetration testing is one of the key techniques used in real life to accurately detect the possible threats and potential attacks against the system, and the first step for hackers to conduct attacks is information collection. In this paper, we present a useful schema for the active information-gathering phase that can be used during penetration testing and by system administrators. It will be the first feature of a security engine going to be implemented. The work involves an automated API-based IP and port scanner, service-version enumerator, and vulnerability detection system. This scheme is based on the Network Mapper (Nmap) to collect the information with high accuracy depending on the provided rules in our schema. Besides, the work has been implemented as a RESTful-API server, aiming at easy integration for real-life cases and allowing administrators to scan and secure their networks more quickly and easily. The effectiveness and efficiency of this technique has been proved by the various test cases applied considering different scenarios from the real world. The average time of scanning a server and detecting the vulnerabilities is 2.2 minutes. Regardless of the number of vulnerabilities, the increase in time for each open port is just about 12 seconds.Öğe Parallelized cyber reconnaissance automation: A real-time and scheduled security scanner(İstanbul Medipol Üniversitesi, Fen Bilimleri Enstitüsü, 2022) Malkawi, Malek; Alhajj, RedaThe extraordinary advancement of technology has increased the importance of achieving the required level of information security, which is still difficult to achieve. Recently, network and web application attacks have occurred frequently, causing confidential data to be stolen by the available vulnerabilities in the systems. The most prominent reason behind the attacks is open ports with vulnerable services. This causes the CIA (Confidentiality, Integrity, and Availability) Triad Model to break. Penetration testing is one of the key techniques used in real life to accurately detect possible threats and potential attacks against the system, and the first step for hackers to conduct attacks is information collection. In this work, with the aim of relieving real-world concerns, we present a useful schema for the active information-gathering phase that can be used during penetration testing and by system administrators. It will be the first feature of a security engine to be implemented. It is an automated security scanner based on parallelization. It supports real-time and scheduled system scans in parallel in the phase of active information gathering based on not only a RESTful API allowing easy integration for real-life cases, but also a Network Mapper (Nmap) to collect the information with high accuracy depending on the provided rules in our schema. With the integration of the message-broker software (RabbitMQ) that originally implemented the advanced message queuing protocol (AMQP), the user has the ability to create instant customized scans and check the related results. These features depend on Celery workers using an asynchronous task queue, which is reliant on distributed message passing to perform multiprocessing and concurrent execution of tasks. The system can be used by penetration testers, IT departments, and system administrators to monitor their systems and grant high security and instant alarms on critical threats. An automated IP and port scanning, service-version enumeration, and security vulnerability detection system are the core of the proposed scheme project. The accuracy and efficiency of this technique have been demonstrated through a variety of test cases based on real-world events. The average time of scanning a server and detecting vulnerabilities is 1.7 minutes. Regardless of the number of vulnerabilities, the increase in time for each open port is just about 12 seconds. The average run time for scanning the 20 distinct servers that we have used as test cases is 35 minutes, and with the power of parallelization, we could decrease the elapsed time by 90.80\% to 4 minutes.Öğe Real-time web-based International Flight Tickets Recommendation System via Apache Spark(Institute of Electrical and Electronics Engineers Inc., 2023) Malkawi, Malek; Alhajj, RedaTraveling by airplane has become more popular with advanced technology. The tickets can be booked effortlessly via airlines corporation's online platforms. However, recommending the best airline ticket according to the buyer's demands is a challenging task owing to the unexpected fluctuations in the price depending on various reasons. Traditional recommender suggestions are optimized for predicting the price for a specific time or estimating the period of the lowest price. However, considering the sudden changes is an essential matter to increase the accuracy. In this work, we present a web-based real-time system to recommend the most suitable ticket regardless of the continuous changes in the prices. Apache Spark has been used to analyze the data obtained from the international airline web pages. Besides the ease of use of the system, it helps the customer to buy the flight ticket at the lowest price for the desired period and destination. Based on the proposed model, using Python programming language, Flask web server, and Apache Spark, we design and implement the international ticket recommendation system with the MVC design pattern.











