NORMA eResearch @NCI Library

Research Focused on Threat Detection Rule Development utilising the Splunk Attack Range to fortify Cybersecurity Analysis

Sankar, Rajuaravind (2024) Research Focused on Threat Detection Rule Development utilising the Splunk Attack Range to fortify Cybersecurity Analysis. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
PDF (Master of Science)
Download (2MB) | Preview
[thumbnail of Configuration Manual]
Preview
PDF (Configuration Manual)
Download (2MB) | Preview

Abstract

The research focused on the developing threat detection rule using the Splunk Attack Range tool to enhance the organization infrastructure security. In this research work, the key challenge of replicating production environment to simulate attack data is tackled with the Splunk Attack Range tool, which is a vital for effective threat detection rule development. This study delves into strategies to overcome the time-consuming nature of this replication process. By optimizing the simulation, organizations can efficiently create threat detection rules tailored to their specific environments. The development of efficient threat detection rule plays a vital role in identifying and eliminating the malicious actor in the network, therefore strengthening the organization infrastructure. The ultimate goal of the research aims in the improvement of defence security by enabling the development of accurate and robust threat detection alerts to counter the evolving cyber threats in the modern IT world.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Monaghan, Mark
UNSPECIFIED
Uncontrolled Keywords: Threat Detection Rule; Splunk Enterprise; Splunk Attack Range; Security Analysis; SIEM; Attack Data
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Q Science > Q Science (General) > Self-organizing systems. Conscious automata > Machine learning
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Ciara O'Brien
Date Deposited: 31 Jul 2025 08:31
Last Modified: 31 Jul 2025 08:31
URI: https://norma.ncirl.ie/id/eprint/8364

Actions (login required)

View Item View Item