Please use this identifier to cite or link to this item:

http://hdl.handle.net/10609/132128
Title: Plataformas SOAR. Respuesta orquestada y automatizada de la seguridad
Author: del Pino Medina, Alejandro
Director: García Font, Víctor
Tutor: Mendoza Flores, Manuel Jesús
Keywords: SOAR
SOC
SIEM
Issue Date: Jun-2021
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: This paper seeks to place the reader on the importance of communication monitoring to increase security, we will review the main communication monitoring systems, we will delve into current SIEMs and their evolution, to focus on the knowledge of the Platforms SOAR (Security Orchestration, Automation and Response Solutions), where they arise, what are their components and the importance that they will have in the future in the face of the use of AI to carry out computer attacks. The current SOAR solutions that are having greater success in the market will also be analyzed and their importance as a tool that can act in real time in the event of incidents, preventing greater damage by acting automatically. As a laboratory we will show the necessary components to implement an Open Source SOAR solution, for this we will analyze the operation of the TheHive Project, we will describe the architecture, installation and operation. We will also analyze different Public Cloud solutions focusing on the Amazon GuardDuty platform. We will conduct proofs of concept for Project TheHive and GuardDuty.
Language: Spanish
URI: http://hdl.handle.net/10609/132128
Appears in Collections:Bachelor thesis, research projects, etc.

Share:
Export:
Files in This Item:
File Description SizeFormat 
adelpinomeTFM0621memoria.pdfMemoria del TFM5.29 MBAdobe PDFView/Open

This item is licensed under a Creative Commons License Creative Commons