Bc. Svorad Simko

Master's thesis

SOC Detection Capabilities Testing Environment

SOC Detection Capabilities Testing Environment
Abstract:
Cieľom tejto diplomovej práce je vytvoriť testovvacie prostredie reprezentujúce štandardnú infraštruktúru malej firmy, umožnujúce testovanie detekčných schopní SOCu. Vytvorenie tohto prostredia je plne automatizované a umožňuje opakované použitie. Toto testovacie prostredie je možné použiť pre zlepšenie znalostí o aktuálnych hrozbách. Na začiatku práca popisuje motiváciu a požiadavky na vytvorené prostredie …more
Abstract:
This thesis aims to create a testing lab representing an environment of a small organization that can be used to test SOC's detection capabilities against real-world cyber attacks. Using automation, the environment deployment has to be repeatable to allow use for different adversary emulation and detection assessment. This testing environment is to be used to improve knowledge of current cyber threats …more
 

Keywords

SOC cybersecurity purple team ansible testing lab mitre att\& ck threat intelligence
 
Language used: English
Date on which the thesis was submitted / produced: 18. 5. 2021
Identifier: https://is.muni.cz/th/o07fi/

Thesis defence

  • Date of defence: 24. 6. 2021
  • Supervisor: doc. RNDr. Tomáš Pitner, Ph.D.
  • Reader: Peter Jankovský

Citation record

Cite this text

Full text of thesis

Contents of on-line thesis archive
Published in Theses:
  • světu
Other ways of accessing the text
Institution archiving the thesis and making it accessible: Masarykova univerzita, Fakulta informatiky
Složka Reference to the local database directory of the institution

Masaryk University

Faculty of Informatics

Master programme / field:
Applied Informatics / Service Science, Management and Engineering

Theses on a related topic

List of theses with an identical keyword.