A carregar...
Publicação
Cyber Security Network Gap Compliance and Vulnerability Detection
| Nome: | Descrição: | Tamanho: | Formato: | |
|---|---|---|---|---|
| 1.3 MB | Adobe PDF |
Orientador(es)
Resumo(s)
The increasing complexity of corporate networks and the growing sophistication of cyber threats demand proactive security measures. This project addresses these challenges by presenting the design and implementation of a custom network scanning and vulnerability detection solution for MEO. The solution was designed to seamlessly integrate with the organization’s existing infrastructure, including Elasticsearch and IBM QRadar, making use of the Nmap tool for network scanning and custom NSE (Nmap Scripting Engine) scripts to detect known vulnerabilities. With automated reporting and alerting features, this solution is efficient, modular and capable of detecting potential security vulnerabilities promptly. The primary goal was to create a tool that enhances network visibility, minimizes operational impact, and is fully configurable to suit varying security needs. By offering better control over scan targets, whitelisting and blacklisting, the solution provides a highly customizable approach to scanning and monitoring, enabling MEO to stay ahead of potential threats. Initial tests show a significant improvement in scan performance compared to the previous system, while successfully detecting vulnerabilities and triggering the appropriate alerts. While the project has yet to be fully implemented in production, the solution has shown promise in providing MEO with a proactive approach to network security management. This solution contributes to MEO's cybersecurity resilience, offering a more flexible and efficient approach to network scanning and vulnerability detection.
Descrição
Tese de Mestrado, Segurança Informática, 2025, Universidade de Lisboa, Faculdade de Ciências
Palavras-chave
Network Scanning Nmap Vulnerability Detection Incident Management Cybersecurity