Please use this identifier to cite or link to this item:
http://hdl.handle.net/10609/113266
| Title: | Security analytics with Elastic |
| Author: | Mancini, Marco |
| Director: | Rifà-Pous, Helena  |
| Tutor: | Canto Rodrigo, Pau del |
| Abstract: | The objectives of this project are: Analyse the current state of the art for the Elastic stack project in regard to its use for security analysis.Building a laboratory with both a functioning Elastic stack and live endpoints. To demonstrate current capabilities within different scenarios. The following scenarios will be covered to demonstrate which logs and functionalities of the Elastic stack can be useful for them: Ubuntu machine being infected by crypto miner. Ubuntu Server running apache being compromised through an exploit. Finally, I hope to produce an evaluation of the old and new modules of the Elastic stack when applied to an incident response context. Which include the SIEM, Machine Learning, watchers, dashboards, Timelion and Graph. |
| Keywords: | security analysis data analysis Logstash ElasticSearch Kibana SIEM |
| Document type: | info:eu-repo/semantics/masterThesis |
| Issue Date: | 31-Dec-2019 |
| Publication license: | http://creativecommons.org/licenses/by/3.0/es/  |
| Appears in Collections: | Trabajos finales de carrera, trabajos de investigación, etc. |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| mmanciniTFM1219memory.pdf | TFM memory | 3,42 MB | Adobe PDF |  View/Open |
Share:
Google Scholar
Microsoft Academic
This item is licensed under a Creative Commons License
