Abstract | ||
---|---|---|
In this article, we present CORGI, a security-oriented log visualization tool that allows security experts to visually explore and link numerous types of log files through relevant representations and global filtering. The analyst can mark values as values of interest and then use these values to pursue the exploration in other log files, allowing him to better understand events and reconstruct attack scenarios. We present the user interface and interactions that ensure these capabilities and provide two use cases based on challenges from VAST and from the Honeynet project. |
Year | DOI | Venue |
---|---|---|
2014 | 10.1145/2671491.2671494 | VizSEC |
Keywords | Field | DocType |
security and protection,intrusion detection,interaction techniques,security,forensics,visualization | Data mining,Honeypot,Use case,Computer security,Computer science,Visualization,Filter (signal processing),User interface,Intrusion detection system | Conference |
Citations | PageRank | References |
1 | 0.41 | 19 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Christopher Humphries | 1 | 5 | 1.18 |
Nicolas Prigent | 2 | 52 | 7.38 |
Christophe Bidan | 3 | 166 | 18.15 |
Frédéric Majorczyk | 4 | 44 | 6.04 |