Please use this identifier to cite or link to this item:
http://hdl.handle.net/10609/132128
Title: | Plataformas SOAR. Respuesta orquestada y automatizada de la seguridad |
Author: | Pino Medina, Alejandro del |
Tutor: | Mendoza Flores, Manuel Jesús |
Others: | Garcia-Font, Victor |
Abstract: | This paper seeks to place the reader on the importance of communication monitoring to increase security, we will review the main communication monitoring systems, we will delve into current SIEMs and their evolution, to focus on the knowledge of the Platforms SOAR (Security Orchestration, Automation and Response Solutions), where they arise, what are their components and the importance that they will have in the future in the face of the use of AI to carry out computer attacks. The current SOAR solutions that are having greater success in the market will also be analyzed and their importance as a tool that can act in real time in the event of incidents, preventing greater damage by acting automatically. As a laboratory we will show the necessary components to implement an Open Source SOAR solution, for this we will analyze the operation of the TheHive Project, we will describe the architecture, installation and operation. We will also analyze different Public Cloud solutions focusing on the Amazon GuardDuty platform. We will conduct proofs of concept for Project TheHive and GuardDuty. |
Keywords: | SOAR SOC SIEM |
Document type: | info:eu-repo/semantics/masterThesis |
Issue Date: | Jun-2021 |
Publication license: | http://creativecommons.org/licenses/by-nc-nd/3.0/es/ |
Appears in Collections: | Trabajos finales de carrera, trabajos de investigación, etc. |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
adelpinomeTFM0621memoria.pdf | Memoria del TFM | 5,29 MB | Adobe PDF | View/Open |
Share:
This item is licensed under a Creative Commons License