Targeted attack detection by means of free and open source solutions
- Authors: Bernardo, Louis F
- Date: 2019
- Subjects: Computer networks -- Security measures , Information technology -- Security measures , Computer security -- Management , Data protection
- Language: English
- Type: text , Thesis , Masters , MSc
- Identifier: http://hdl.handle.net/10962/92269 , vital:30703
- Description: Compliance requirements are part of everyday business requirements for various areas, such as retail and medical services. As part of compliance it may be required to have infrastructure in place to monitor the activities in the environment to ensure that the relevant data and environment is sufficiently protected. At the core of such monitoring solutions one would find some type of data repository, or database, to store and ultimately correlate the captured events. Such solutions are commonly called Security Information and Event Management, or SIEM for short. Larger companies have been known to use commercial solutions such as IBM's Qradar, Logrythm, or Splunk. However, these come at significant cost and arent suitable for smaller businesses with limited budgets. These solutions require manual configuration of event correlation for detection of activities that place the environment in danger. This usually requires vendor implementation assistance that also would come at a cost. Alternatively, there are open source solutions that provide the required functionality. This research will demonstrate building an open source solution, with minimal to no cost for hardware or software, while still maintaining the capability of detecting targeted attacks. The solution presented in this research includes Wazuh, which is a combination of OSSEC and the ELK stack, integrated with an Network Intrusion Detection System (NIDS). The success of the integration, is determined by measuring postive attack detection based on each different configuration options. To perform the testing, a deliberately vulnerable platform named Metasploitable will be used as a victim host. The victim host vulnerabilities were created specifically to serve as target for Metasploit. The attacks were generated by utilising Metasploit Framework on a prebuilt Kali Linux host.
- Full Text:
- Authors: Bernardo, Louis F
- Date: 2019
- Subjects: Computer networks -- Security measures , Information technology -- Security measures , Computer security -- Management , Data protection
- Language: English
- Type: text , Thesis , Masters , MSc
- Identifier: http://hdl.handle.net/10962/92269 , vital:30703
- Description: Compliance requirements are part of everyday business requirements for various areas, such as retail and medical services. As part of compliance it may be required to have infrastructure in place to monitor the activities in the environment to ensure that the relevant data and environment is sufficiently protected. At the core of such monitoring solutions one would find some type of data repository, or database, to store and ultimately correlate the captured events. Such solutions are commonly called Security Information and Event Management, or SIEM for short. Larger companies have been known to use commercial solutions such as IBM's Qradar, Logrythm, or Splunk. However, these come at significant cost and arent suitable for smaller businesses with limited budgets. These solutions require manual configuration of event correlation for detection of activities that place the environment in danger. This usually requires vendor implementation assistance that also would come at a cost. Alternatively, there are open source solutions that provide the required functionality. This research will demonstrate building an open source solution, with minimal to no cost for hardware or software, while still maintaining the capability of detecting targeted attacks. The solution presented in this research includes Wazuh, which is a combination of OSSEC and the ELK stack, integrated with an Network Intrusion Detection System (NIDS). The success of the integration, is determined by measuring postive attack detection based on each different configuration options. To perform the testing, a deliberately vulnerable platform named Metasploitable will be used as a victim host. The victim host vulnerabilities were created specifically to serve as target for Metasploit. The attacks were generated by utilising Metasploit Framework on a prebuilt Kali Linux host.
- Full Text:
The use of filter-feeding fish (Clarias gariepinus and Oreochromis mossambicus) to remove microalgae from brewery effluent treatment ponds
- Authors: Nombembe, Lwazi
- Date: 2019
- Subjects: Clarias gariepinus -- Food , Mozambique tilapia -- Food , Water -- Purification -- South Africa , Algae -- Biotechnology -- South Africa , Microalgae -- Biotechnology-- South Africa , Brewery waste -- South Africa , Fish culture -- South Africa
- Language: English
- Type: text , Thesis , Masters , MSc
- Identifier: http://hdl.handle.net/10962/95745 , vital:31194
- Description: The removal of microalgae from high rate algal ponds (HRAP) in waste-water treatment systems remains a constraint to their use in effluent treatment systems. Conventional algae harvesting methods often have high energy demands, take up lots of space, are expensive to operate or are time consuming. The aim of the study was to determine if fish such as Clarias gariepinus and Oreochromis mossambicus, could be used to remove microalgae from waste-water treatment ponds (in the absence/presence of a flocculent in the former and in the absence or presence of pH moderation in the latter), and to investigate the subsequent influence of algae concentration on several water quality parameters. The age of Clarias gariepinus (3-12 months) had a positive relationship with the distance between gill rakers (98.27 to 163.34 μm; y=90.576+4.823*x: R²=0.549; F(1,18)=21.867; p<0.001) and these data suggested that these fish might be efficient at removing algae from HRAP effluent. However, this was not the case, even with flocculent application (but this result might have been confounded by very high pH readings, at which flocculation is less likely to occur). Oreochromis mossambicus removed some of this algae, but the pH was too high for tilapia culture. It was not possible to moderate the increase in pH by keeping tanks in the dark and thus preventing photosynthesis; but pH fluctuation in HRAP effluent could be moderated using CO2 sparging in an attempt to make the environment more hospitable for tilapia (the average pH that was moderated with CO2 was 8.43±0.06, whereas the unmoderated average was 10.65±0.06). However, pH moderation using CO2 sparging did not increase the rate at which algae were removed by O. mossambicus; rather, it compromised O2 concentration which dropped to 4.17±1.26 mg/l after five hours of CO2 sparging, whereas it increased to 20.50±1.41 mg/l in treatments with unadjusted pH over the same period. Fish can be used to remove algae from treated effluent, and Oreochromis mossambicus remains a recommended species. Future work needs to investigate moderating fluctuations in pH and O2 concentration to further facilitate this method of algae removal.
- Full Text:
- Authors: Nombembe, Lwazi
- Date: 2019
- Subjects: Clarias gariepinus -- Food , Mozambique tilapia -- Food , Water -- Purification -- South Africa , Algae -- Biotechnology -- South Africa , Microalgae -- Biotechnology-- South Africa , Brewery waste -- South Africa , Fish culture -- South Africa
- Language: English
- Type: text , Thesis , Masters , MSc
- Identifier: http://hdl.handle.net/10962/95745 , vital:31194
- Description: The removal of microalgae from high rate algal ponds (HRAP) in waste-water treatment systems remains a constraint to their use in effluent treatment systems. Conventional algae harvesting methods often have high energy demands, take up lots of space, are expensive to operate or are time consuming. The aim of the study was to determine if fish such as Clarias gariepinus and Oreochromis mossambicus, could be used to remove microalgae from waste-water treatment ponds (in the absence/presence of a flocculent in the former and in the absence or presence of pH moderation in the latter), and to investigate the subsequent influence of algae concentration on several water quality parameters. The age of Clarias gariepinus (3-12 months) had a positive relationship with the distance between gill rakers (98.27 to 163.34 μm; y=90.576+4.823*x: R²=0.549; F(1,18)=21.867; p<0.001) and these data suggested that these fish might be efficient at removing algae from HRAP effluent. However, this was not the case, even with flocculent application (but this result might have been confounded by very high pH readings, at which flocculation is less likely to occur). Oreochromis mossambicus removed some of this algae, but the pH was too high for tilapia culture. It was not possible to moderate the increase in pH by keeping tanks in the dark and thus preventing photosynthesis; but pH fluctuation in HRAP effluent could be moderated using CO2 sparging in an attempt to make the environment more hospitable for tilapia (the average pH that was moderated with CO2 was 8.43±0.06, whereas the unmoderated average was 10.65±0.06). However, pH moderation using CO2 sparging did not increase the rate at which algae were removed by O. mossambicus; rather, it compromised O2 concentration which dropped to 4.17±1.26 mg/l after five hours of CO2 sparging, whereas it increased to 20.50±1.41 mg/l in treatments with unadjusted pH over the same period. Fish can be used to remove algae from treated effluent, and Oreochromis mossambicus remains a recommended species. Future work needs to investigate moderating fluctuations in pH and O2 concentration to further facilitate this method of algae removal.
- Full Text:
- «
- ‹
- 1
- ›
- »