Automatic Analysis and Response Engine For Monitoring System
| dc.contributor.advisor | Phạm, Tùng Dương | |
| dc.contributor.author | Nguyễn, Đình Mạnh | |
| dc.contributor.author | Nguyễn, Văn Minh | |
| dc.contributor.author | Trần, Thành Đạt | |
| dc.contributor.author | Đinh, Nguyễn Ngọc Thắng | |
| dc.contributor.author | Trần, Nhật Long | |
| dc.date.accessioned | 2023-02-14T03:57:22Z | |
| dc.date.available | 2023-02-14T03:57:22Z | |
| dc.date.issued | 2022 | |
| dc.identifier.uri | http://ds.libol.fpt.edu.vn/handle/123456789/3604 | |
| dc.description.abstract | Cyber threats are evolving rapidly, increasing in frequency, complexity, and intensity. Hacked systems, breached networks, crashed websites, denial of service, stolen credentials, and other cyber incidents have become common. To always be ready to respond to threats in cyberspace, it is necessary to have a system of cyber responses to a cyber incident. Based on integrating the n8n platform with other apps, we built an automation system for SOC monitoring that can help analyze and respond to an incident in each particular case which we call playbooks. In our project, to perform censorship of the built automation system we will perform 10 playbooks: 1. Many Failed SSH Login Attempt Playbook 2. Compromised User Account Playbook 3. Login from out-of-region playbook 4. Netcat revert shell playbook 5. Log4j Attack playbook 6. Denial-of-Service (DoS) playbook 7. Pass-the-hash playbook 8. Malicious File Upload playbook 9. Malicious File Execution playbook 10. Download the Malicious File playbook | en_US |
| dc.language.iso | en | en_US |
| dc.publisher | FPTU HN | en_US |
| dc.subject | Information Assurance | en_US |
| dc.subject | Monitoring System | en_US |
| dc.subject | Automatic Analysis | en_US |
| dc.subject | Cyber threats | en_US |
| dc.subject | Cyber incident | en_US |
| dc.subject | Response Engine | en_US |
| dc.title | Automatic Analysis and Response Engine For Monitoring System | en_US |
| dc.title.alternative | Tự động phân tích và xử lý trong giám sát an toàn thông tin | en_US |
| dc.type | Thesis | en_US |
Các tập tin trong tài liệu này
Tài liệu này xuất hiện trong Bộ sưu tập
Bộ sưu tập thuộc về Trung tâm Thông tin - Thư viện - Trường Đại học FPT
Địa chỉ: Phòng 207 - Tầng 1 - Km 28 - Khu công nghệ cao Hòa Lạc - Thạch Hòa - Thạch Thất - Hà Nội
Điện thoại: 844.66805912 - FAX: - Email: thuvien_fu_hoalac@fpt.edu.vn