Please use this identifier to cite or link to this item:
http://hdl.handle.net/10609/147301
Title: | SIEM en ELK i Kibana |
Author: | Garcia Sanahuja, Pere |
Tutor: | Caparrós, Joan |
Others: | Isern-Deya, Andreu Pere |
Abstract: | In this work, a SIEM solution has been implemented using the ELK stack and a set of virtualized containerized services using Docker to generate data that will later be captured and analyzed by the SIEM. This information will allow the security team to respond to threats as efficiently as possible while they are occurring or to obtain possible evidence of what has happened. In order to carry out the implementation, an agile methodology has been chosen to allow an easier adaptation to possible changes, and the results have allowed the system to be implemented in its entirety in a controlled environment, but scalable to others. Finally, it has been possible to test the functions of the entire SIEM and its operation with the captured data. |
Keywords: | SIEM ELK IOC |
Document type: | info:eu-repo/semantics/masterThesis |
Issue Date: | 10-Jan-2023 |
Publication license: | http://creativecommons.org/licenses/by-nc-sa/3.0/es/ |
Appears in Collections: | Trabajos finales de carrera, trabajos de investigación, etc. |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
pgarciasanaTFM0123memoria.pdf | Memòria del TFM | 1,96 MB | Adobe PDF | View/Open |
Share:
This item is licensed under aCreative Commons License