JOURNAL BROWSE
Search
Advanced SearchSearch Tips
Windows based PC Log Collection System using Open Source
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
 Title & Authors
Windows based PC Log Collection System using Open Source
Song, Jungho; Kim, Hakmin; Yoon, Jin;
 
 Abstract
System administrator or security managers need to collect logs of computing device (desktop or server), which are used for the purpose of cause-analysis of security incident and discover if damage to system was either caused by hacking or computer virus. Furthermore, appropriate log maintenance helps preventing security breech incidents through identification of vulnerability. In addition, it can be utilized for prevention of data leakage through the insider. In the paper, we present log collection system developed using open source supported by commands and basic methods of Windows. Furthermore, we aim to collect log information to enable search and analysis from diverse perspectives and to propose a way to integrate with open source-based search engine system.
 Keywords
log collection system;log analysis system;logstash;elasticsearch;forensic;open source;
 Language
Korean
 Cited by
 References
1.
J. Babbin, D. Kleiman and E.F Carter, "Security Log Management," SYNGRESS, pp. 244-251, Jan. 2006.

2.
[Online]. Available: https://msdn.microsoft.com/ko-kr/library/aa394594(v=vs.85).aspx

3.
[Online]. Available: Scribe, https://github.com/facebookarchive/scribe

4.
[Online]. Available: Flume, https://flume.apache.org/

5.
[Online]. Available: Chukwa, https://chukwa.apache.org/

6.
Logstash, [Online]. Available: https://www.elastic.co/products/logstash

7.
Elasticsearch, [Online]. Available: https://www.elastic.co/products/elasticsearch

8.
Kibana, [Online]. Available: https://www.elastic.co/products/kibana

9.
Kharraz, A., Robertson, W., Balzarotti, D., Bilge, L., & Kirda, E., "Cutting the gordian knot: a look under the hood of ransomware attacks," In Detection of Intrusions and Malware, and Vulnerability Assessment Springer International Publishing, pp. 3-24, 2015.