Kolekar, Preetam Shrikar (2023) Tackling Cyber Kill Chain Stages in a lab Environment. Masters thesis, Dublin, National College of Ireland.
Preview |
PDF (Master of Science)
Download (2MB) | Preview |
Preview |
PDF (Configuration manual)
Download (1MB) | Preview |
Abstract
This thesis included an in-depth analysis on how to tackle each stage of the Cyber Kill Chain in a lab environment. The hypothesis of this project includes mapping the CIS v8 Controls to the MITRE ATT&CK techniques and implement the mitigation inspired from CIS Controls to provide a mitigation to break the kill chain. The implementation has been performed using a lab setup which server as a generic and secure ecosystem/environment which will demonstrate several security solutions such as SIEM, NIDS, HIDS, Proxy, Firewall, Malware Scanning. By using one or more implemented security solutions, we have created a lab to safeguard itself from attacks by tailoring it specifically to tackle every stage of the Cyber Kill Chain. The lab is setup using a type-2 hypervisor: Oracle Virtual Box. Where the victim machine is a Windows 10 VM and Linux serves as a gateway for security solutions. Wherever possible, we have made use of cloud services such as ELK in the Cloud to reduce the workload on the underlying hardware and provide us high availability of the SIEM service.
Item Type: | Thesis (Masters) |
---|---|
Supervisors: | Name Email Pantridge, Michael UNSPECIFIED |
Subjects: | Q Science > QA Mathematics > Electronic computers. Computer science T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science Q Science > QA Mathematics > Computer software > Computer Security T Technology > T Technology (General) > Information Technology > Computer software > Computer Security |
Divisions: | School of Computing > Master of Science in Cyber Security |
Depositing User: | Tamara Malone |
Date Deposited: | 22 Oct 2024 15:16 |
Last Modified: | 22 Oct 2024 15:16 |
URI: | https://norma.ncirl.ie/id/eprint/7129 |
Actions (login required)
View Item |