Morwilog
Aller à la navigation
Aller à la recherche
Morwilog: Security Threat Detection using Ant-inspired Algorithm
Team
- Developper: Julio Navarro Lara
- Supervisor: Pierre Parrend
Challenges
- Detection of multi-step threats in a network, including the feedback of a security expert.
- The source of information is an heterogeneous set of logs, from different devices.
- Objective: go beyond traditional search of threats, where signatures of attacks has to be defined by hand.
Features
- Generator of artificial log for testing the algorithm.
- Results are so far extracted in a csv file, from which graphs for evaluating the performance of the algorithm can be developed.
Implementation
- Morwilog is divided in three modules: log generation, training (optional) and testing.
- So far it does not count with a graphical user interface.