A case study on attack detection capabilities between open-source intrusion detection systems

As the pandemic hits the world on 2020, most of the employees worldwide are forced to work from home. This gives a way for the attackers to have a higher attack surface which suggests that businesses need to improve their cybersecurity. Having intrusion detection is one way to improve cybersecurity...

Full description

Saved in:
Bibliographic Details
Main Author: Ascan, Adrian Giovanni G.
Format: text
Language:English
Published: Animo Repository 2022
Subjects:
Online Access:https://animorepository.dlsu.edu.ph/etdm_comtech/1
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: De La Salle University
Language: English
Description
Summary:As the pandemic hits the world on 2020, most of the employees worldwide are forced to work from home. This gives a way for the attackers to have a higher attack surface which suggests that businesses need to improve their cybersecurity. Having intrusion detection is one way to improve cybersecurity as it plays an important role in catching attacks on an early stage. In contrast as most businesses decline, the budget for their cybersecurity declines as well. Using Open-Source tools for cybersecurity would greatly help these businesses without costing a lot. Suricata and Snort are two of the most used Open-Source Network Intrusion Detection Systems. This study evaluates the detection accuracy and detection rate of the two Intrusion Detection Systems by testing them against CICIDS-2017 Intrusion Dataset and the most common malwares in 2020. This will help the readers to choose which Network Intrusion Detection System best fits their environment.