log. A query engine is written to analyse multiple audit logs. This system is a prototype and further work will evolve from it.
Intruder Detection System.Pdf
Subscribe To
Posts
Comments
Thesis on AUDITING AND EVENT CORRELATION /Intruder Detection System
This Thesis is focused on Auditing and Event Correlation. A system is developed to help system administrators analyse system attacks in response to alerts from Intrusion Detection Systems or analyse audit data post hoc. The system is aimed at identifying information leakage between files and processes. In addition, the system also aims to identify illegal user command activity and system attacks. The system is based on Linux and correlates Kernel audit data with shell history data. In addition, File accesses are correlated into a per session audit
log. A query engine is written to analyse multiple audit logs. This system is a prototype and further work will evolve from it.
Download Link:
Intruder Detection System.Pdf
log. A query engine is written to analyse multiple audit logs. This system is a prototype and further work will evolve from it.
Intruder Detection System.Pdf
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment