Computer security in applications has become a crucial aspect in the information technology
industry. The focus of this dissertation is the research for potential vulnerability for an
extremely popular project called Apache Kafka. Apache Kafka is an application that has grown
exponentially throughout the last few years in scale and popularity. Considering how much
Kafka is being used by organizations, it is only natural for a security researcher to search for
potential vulnerabilities. In the scope of this experimentation, the center of attention will be the
authentication methods. Specifically, one of the most common authentication methods will be
tested thoroughly and will be abused to allow a bruteforce attack. For the latter, another valuable
tool called ncrack will be used. Ncrack is part of the nmap suite and a tool that specializes in
brute force attacks. It consists of each core engine along with the modules. Each module is
developed to give access to specific services. To check how well Kafka manages the
authentication procedure, a Kafka module will be created, and further testing will expose
potential security flaws.
Collections
Show Collections