Log Analysis for Network Anomalies Detection in Splunk
Alessandro Zamparutti
Log Analysis for Network Anomalies Detection in Splunk.
Rel. Alessandro Savino. Politecnico di Torino, Corso di laurea magistrale in Ingegneria Informatica (Computer Engineering), 2024
|
Preview |
PDF (Tesi_di_laurea)
- Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (3MB) | Preview |
![[thumbnail of Documenti_allegati]](https://webthesis.biblio.polito.it/style/images/fileicons/application_zip.png "Documenti_allegati")
|
Archive (ZIP) (Documenti_allegati)
- Altro
Licenza: Creative Commons Attribution Non-commercial No Derivatives. Download (1MB) |
Abstract
The rapid expansion of technology has resulted in a substantial rise in data generated by online applications, platforms, and digital services. This stream of information brings both advantages and challenges, specifically in the fields of data analysis and cybersecurity. This thesis focuses on using Splunk Enterprise and Splunk Infosec software and tools to further enhance network anomaly detection and security event analysis. Its primary objective is to develop a simple application that can be deployed within any Splunk infrastructure which allows to gain a general insights into network security as well as effective investigation of possible security threats. Splunk Enterprise is a powerful and versatile tool known for its capabilities in data analysis, visualization, and monitoring.
It provides a platform for ingesting, searching, and analyzing diverse datasets from different sources, including log messages, network traffic data, and security event logs
Tipo di pubblicazione
URI
 |
Modifica (riservato agli operatori) |
