ESH-SOC
Semester programme:
ICT & Infrastructure
Client company:TU/e
Project group members:
Robert Ašvicas
Dmitry Lvov
Ibrahim Taie Ahmed Soliman
Project description
How to collect required audit logs from the monitored by Security Onion infrastructure machines providing conditional access to the gathered data with the end purpose of generating security alerts based on these conditions?
Context
System administration of educational infrastructure
Results
System that will create and display dashboards of the monitored infrastructure using ElasticSearch, Kibana and AuditBeat. On top of that, it will generate alerts when someone breaches the pre-defined rules and security models.