Please use this identifier to cite or link to this item:

http://hdl.handle.net/10609/113266
Title: Security analytics with Elastic
Author: Mancini, Marco
Director: Rifà Pous, Helena  
Tutor: Canto Rodrigo, Pau del
Keywords: security analysis
data analysis
Logstash
ElasticSearch
Kibana
SIEM
Issue Date: 31-Dec-2019
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: The objectives of this project are: Analyse the current state of the art for the Elastic stack project in regard to its use for security analysis.Building a laboratory with both a functioning Elastic stack and live endpoints. To demonstrate current capabilities within different scenarios. The following scenarios will be covered to demonstrate which logs and functionalities of the Elastic stack can be useful for them: Ubuntu machine being infected by crypto miner. Ubuntu Server running apache being compromised through an exploit. Finally, I hope to produce an evaluation of the old and new modules of the Elastic stack when applied to an incident response context. Which include the SIEM, Machine Learning, watchers, dashboards, Timelion and Graph.
Language: English
URI: http://hdl.handle.net/10609/113266
Appears in Collections:Bachelor thesis, research projects, etc.

Share:
Export:
Files in This Item:
File Description SizeFormat 
mmanciniTFM1219memory.pdfTFM memory3.42 MBAdobe PDFView/Open

This item is licensed under a Creative Commons License Creative Commons