Giters

NTNUSecurity / 2019-DC-DFIR

2019 Bachelor student project: An implementation of multiple security platforms with automatic deployment,that requires little to no configuration to make functional. Resulting in a set of operational security collaboration tools fit for a Security Operation Center. Thesis: https://hdl.handle.net/11250/2976415

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

ansibleelasticsearchghidramispthehive-projectautopsy

2019 Distributed collaborative analytics environment for Digital Forensics and Incident Response

An implementation of multiple security platforms with automatic deployment, that requires little to no configuration to make functional. Resulting in a set of operational security collaboration tools fit for a Security Operation Center (SOC). The environment runs in OpenStack instances, and includes configuration and deployment of Ansible, Kubernetes, Docker, TheHive, Ghidra SRE, MISP, Autopsy, ElasticSearch, MariaDB, Solr, ActiveMQ, and NFS.

The platform is written as Infrastructure as Code (IaC) to simplify configuration and deployment of all the services mentioned above. The result is a platform which makes it easier to implement, manage, and scale security tools.

Thesis location (Norwegian): https://ntnuopen.ntnu.no/ntnu-xmlui/handle/11250/2976415

About

2019 Bachelor student project: An implementation of multiple security platforms with automatic deployment,that requires little to no configuration to make functional. Resulting in a set of operational security collaboration tools fit for a Security Operation Center. Thesis: https://hdl.handle.net/11250/2976415

ansibleelasticsearchghidramispthehive-projectautopsy