loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Jesús Díaz-Verdejo 1 ; Javier Muñoz-Calle 2 ; Rafael Estepa Alonso 2 and Antonio Estepa Alonso 2

Affiliations: 1 Dpt. of Signal Theory, Telematics and Communications, University of Granada, Granada, Spain ; 2 Dpt. of Telematics Engineering, University of Seville, Seville, Spain

Keyword(s): Network Security Monitoring, Intrusion Detection Systems, Web Attacks Detection.

Abstract: InspectorLog is a novel tool for offline analysis of HTTP logs. The tool processes web server logs to identify attacks using diverse rule sets, focusing primarily on the URI field. It is compatible with standard rule formats from systems such as Snort, Nemesida, and ModSecurity. This paper describes InspectorLog functionalities, architecture and applications to the scientific community. We also experimentally validate InspectorLog by comparing its detection power with that of the IDS from which rules are taken. Inspector log fills a gap in available tools in cybersecurity practices in forensic analysis, dataset sanitization, and signature tuning. Future enhancements are planned to support additional Web Application Firewalls (WAFs), new rule types, and HTTP protocol methods, aiming to broaden its scope and utility in the ever-evolving domain of network security.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.137.218.176

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Díaz-Verdejo, J.; Muñoz-Calle, J.; Estepa Alonso, R. and Estepa Alonso, A. (2024). InspectorLog: A New Tool for Offline Attack Detection over Web Log Trace Files. In Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT; ISBN 978-989-758-709-2; ISSN 2184-7711, SciTePress, pages 692-697. DOI: 10.5220/0012764000003767

@conference{secrypt24,
author={Jesús Díaz{-}Verdejo. and Javier Muñoz{-}Calle. and Rafael {Estepa Alonso}. and Antonio {Estepa Alonso}.},
title={InspectorLog: A New Tool for Offline Attack Detection over Web Log Trace Files},
booktitle={Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT},
year={2024},
pages={692-697},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012764000003767},
isbn={978-989-758-709-2},
issn={2184-7711},
}

TY - CONF

JO - Proceedings of the 21st International Conference on Security and Cryptography - SECRYPT
TI - InspectorLog: A New Tool for Offline Attack Detection over Web Log Trace Files
SN - 978-989-758-709-2
IS - 2184-7711
AU - Díaz-Verdejo, J.
AU - Muñoz-Calle, J.
AU - Estepa Alonso, R.
AU - Estepa Alonso, A.
PY - 2024
SP - 692
EP - 697
DO - 10.5220/0012764000003767
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic