Analýza Windows logů za účelem odhalení chování škodlivých PowerShell skriptů

Thumbnail Image

Files

LOJ0005_FEI_N0612A140004_2021.pdf (4.59 MB)
LOJ0005_FEI_N0612A140004_2021_zadani.pdf (48 KB)
LOJ0005_FEI_N0612A140004_2021_priloha.zip (1.31 MB)
LOJ0005_FEI_N0612A140004_2021_posudek_vedouci_Plucar_Jan.pdf (54.76 KB)
LOJ0005_FEI_N0612A140004_2021_posudek_oponent_Zelinka_Ivan.pdf (53.7 KB)

Downloads

6

Date issued

2021

Authors

Journal Title

Journal ISSN

Volume Title

Publisher

Vysoká škola báňská – Technická univerzita Ostrava

Location

Signature

Abstract

This diploma thesis is about the analysis and evaluation of the possibilities of the PowerShell program. The aim of the thesis is to get acquainted with and test the possibilities of its logging, which this tool offers. Part of the work is the creation of its own application for automated processing of Windows and PowerShell logs, which are important for the investigation of security incidents. Last but not least, the implementation of a server for visualization of Windows logs using Splunk.

Description

Subject(s)

PowerShell, Splunk, logs, Windows events, registry

Citation

Item identifier

http://hdl.handle.net/10084/145575

Collections

Vysokoškolské kvalifikační práce Fakulty elektrotechniky a informatiky / Theses and dissertations of Faculty of Electrical Engineering and Computer Science (FEI)