Insider Threat Detection Using Microsoft Log Files (Paperback)

Many threats to a network are not detected in a timely manner. Some are found hours or even days after the threat occurs. This research enhances threat detection in networks by parsing log data from the Windows event viewer. The data is processed in real time, and the notification of a threat results in the immediate sending of an email alertto the administrator. This notification is an imperative first step which alerts administrators of a possible threat that needs to be fully investigated. It was found that timely auditing of all components of the Microsoft Event Log, along with a script running to monitor these events on all network systems, can alert an administrator immediately of a potential threat situation on the network via email, resulting in more efficient defense tactics.

General

Imprint:	Biblioscholar
Country of origin:	United States
Release date:	November 2012
First published:	November 2012
Authors:	Michelle C. Krug
Dimensions:	246 x 189 x 8mm (L x W x T)
Format:	Paperback - Trade
Pages:	146
ISBN-13:	978-1-288-30802-6
Categories:	Books > Social sciences > Education > General Promotions
LSN:	1-288-30802-7
Barcode:	9781288308026

Is the information for this product incomplete, wrong or inappropriate? Let us know about it.

Does this product have an incorrect or missing image? Send us a new image.

Is this product missing categories? Add more categories.

Review This Product

No reviews yet - be the first to create one!