Back to search

Bc. Jiří Šimek

Bachelor's thesis

Processing of DNS BIND server logs for Cybersecurity Incident Response Teams

Processing of DNS BIND server logs for Cybersecurity Incident Response Teams
Abstract:
Cílem této práce je vytvořit nástroj pro analýzu logů DNS serveru pro potřeby Kyberbezpečnostního týmu Masarykovy univerzity. V rámci práce má být vytvořena konfigurace pro zpracování logů a jejich normalizaci za účely datové analýzy. Data pak budou předána architektuře Elastic stack, kterou budou zpracována a vizualizována v aplikaci Kibana. Výstupem práce je dashboard v aplikaci Kibana, jehož cílem …more
Abstract:
The main goal of this thesis is to create a DNS server log analysis tool for the needs of the Cybersecurity Incident Response Team of Masaryk University. This goal will be achieved by implementing a pipeline, which receives raw logs produced by the server's logging service, extracts relevant information from the logs, and restructures them for the purpose of data analysis. The data is then shipped …more
 

Keywords

CSIRT-MU dashboard visualization logging DNS ELK
 
Language used: English
Date on which the thesis was submitted / produced: 16. 12. 2021
Identifier: https://is.muni.cz/th/dkce9/

Thesis defence

  • Date of defence: 9. 2. 2022
  • Supervisor: RNDr. Stanislav Špaček
  • Reader: RNDr. Martin Laštovička

Citation record

Cite this text

Full text of thesis

Contents of on-line thesis archive
Published in Theses:
  • světu
Other ways of accessing the text
Institution archiving the thesis and making it accessible: Masarykova univerzita, Fakulta informatiky
Složka Reference to the local database directory of the institution

Masaryk University

Faculty of Informatics

Bachelor programme / field:
Applied Informatics / Applied Informatics

Theses on a related topic

List of theses with an identical keyword.