Zaarifwandono, Poby (2017) Real Time Access Log Analyzer For Detection And Prevention Of Web Attack. Sarjana thesis, Universitas Brawijaya.
Abstract
Website atau situs adalah suatu halaman yang saling terhubung berisi sekumpulan informasi yang disediakan perorangan, kelompok atau suatu organisasi. Setiap website juga menyediakan informasi yang berbeda sesuai tipe website, seperti blog atau personal, bisnis, pemerintahan dan lain sebagainya. Banyaknya kasus pembobolan website dan pencurian data menjadi dasar penelitian ini. Penelitian ini berfokus kepada pendeteksian serangan terhadap website. Access log adalah kumpulan aktivitas website berupa alamat ip, tanggal, metode request, request URL, kode status, jumlah byte, referrer dan user agent. Dengan menganalisis access log beberapa serangan website dapat ditemukan tentunya secara otomatis mengingat jumlah baris/log satu file access log sangat banyak. Hansipy/log analyzer dibuat menggunakan bahasa pemrograman python memanfaatkan library yang sudah disediakan. Access log yang telah didapat akan diolah meliputi pengumpulan data, ekstraksi, analisis dan deteksi. Setelah proses tersebut dilakukan penulisan ulang log yang terdekteksi berpotensi serangan kedalam database dan ditampilkan kembali dalam web report. Berdasarkan hasil penelitian dapat disimpulkan bahwa sistem log analyzer/hansipy dapat diimplementasikan dalam webserver sebagai Intrusion Detection System/IDS untuk menjaga dari tindak kriminal di dunia digital khususnya website.
English Abstract
Website or simply called ‘site’ is a page that contains a set of interconnected information provided by an individual, a group or an organization. Each website also provides different information according to the types of websites, such as blogs or personal, business, government and others. The number of cases of burglary and theft of data website is the basis of this study. This study focused on the detection of attacks against websites. Access log is a collection of website activity such as IP address, date, request method, request URL, status code, number of bytes, referrer and user agent. By analyzing the access log, some attacks against the website can be found by automatic way, considering the number of rows/log in one log file access can be very much. Hansipy / log analyzer built using python which utilizing libraries that have been provided. Access logs that had been obtained will be processed, including data collection, extraction, analysis and detection. After the process, the detected log which potentially attacked will be rewritten into the database and displayed in the web report. Based on the results of this study concluded that the system log analyzer/hansipy can be implemented in webserver as Intrusion Detection System/IDS to protect from crime in the digital world, especially websites.
| Item Type: | Thesis (Sarjana) |
|---|---|
| Identification Number: | SKR/FTIK/2017/97/051701512 |
| Subjects: | 000 Computer science, information and general works > 005 Computer programming, programs, data |
| Divisions: | Fakultas Ilmu Komputer > Teknik Informatika |
| Depositing User: | Kustati |
| Date Deposited: | 14 Mar 2017 14:56 |
| Last Modified: | 21 Oct 2021 02:33 |
| URI: | http://repository.ub.ac.id/id/eprint/147533 |
Preview |
Text
[SKRIPSI]_REAL_TIME_ACCESS_LOG_ANALYZER_FOR_DETECTION_AND_PREVENTION_OF_WEB_ATTACK.pdf Download (8MB) | Preview |
Actions (login required)
 |
View Item |