{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,8]],"date-time":"2026-07-08T15:56:25Z","timestamp":1783526185386,"version":"3.55.0"},"reference-count":17,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,7,1]]},"DOI":"10.1109\/ecai52376.2021.9515120","type":"proceedings-article","created":{"date-parts":[[2021,8,23]],"date-time":"2021-08-23T18:03:11Z","timestamp":1629741791000},"page":"1-6","source":"Crossref","is-referenced-by-count":13,"title":["Cyber Attacks Detection Using Open Source ELK Stack"],"prefix":"10.1109","author":[{"given":"Razvan","family":"Stoleriu","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Alin","family":"Puncioiu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ion","family":"Bica","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref10","article-title":"MISP - Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing (formerly known as Malware Information Sharing Platform)","year":"2020","journal-title":"misp-project org"},{"key":"ref11","article-title":"GeoIP processor Elasticsearch Reference [7.9] Elastic","year":"2020","journal-title":"elastic co"},{"key":"ref12","article-title":"memcached - a distributed memory object caching system","year":"2020","journal-title":"memcached org"},{"key":"ref13","article-title":"auditd(8): Audit daemon - Linux man page","year":"2020","journal-title":"linux die net"},{"key":"ref14","article-title":"Beats: Data Shippers for Elasticsearch Elastic","year":"2021","journal-title":"elastic co"},{"key":"ref15","article-title":"Sysmon - Windows Sysinternals Microsoft Docs","year":"2020","journal-title":"Docs microsoft com"},{"key":"ref16","article-title":"GitHub - SwiftOnSecurity\/sysmon-config: Sysmon configuration file template with default high-quality event tracing","year":"2020","journal-title":"GitHub com"},{"key":"ref17","article-title":"Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations FireEye Inc","year":"2020","journal-title":"Fireeye com[J]"},{"key":"ref4","first-page":"1845","article-title":"Detecting and Analyzing the Malicious Linux Events using Filebeat and ELK Stack","volume":"8","author":"babu","year":"2019","journal-title":"International Journal of Engineering and Advanced Technology (IJEAT)"},{"key":"ref3","first-page":"716","article-title":"Detecting and analyzing the malicious windows events using winlogbeat and ELK stack","volume":"7","author":"praneeth","year":"2019","journal-title":"International Journal of Recent Technology and Engineering"},{"key":"ref6","article-title":"Anatomy of an APT (Advanced Persistent Threat) Attack FireEye","year":"2020","journal-title":"Fireeye com[J]"},{"key":"ref5","first-page":"667","article-title":"Intrusion Detection System using ELK Stack","volume":"7","author":"kumar","year":"2019","journal-title":"International Journal of Applied Science and Engineering Research"},{"key":"ref8","article-title":"Machine Learning for Elasticsearch Elastic","year":"2020","journal-title":"elastic co"},{"key":"ref7","article-title":"Matrix - Enterprise MITRE ATT&CK&#x00AE;","year":"2020","journal-title":"attack mitre org"},{"key":"ref2","first-page":"882","article-title":"Malicious Event Detection Using ELK Stack Through Cyber Threat Intelligence","volume":"8","author":"harikanth","year":"2019","journal-title":"International Journal of Innovative Technology and Exploring Engineering (IJITEE)"},{"key":"ref1","first-page":"45","article-title":"Monitoring and Analysing Anomaly Activities in a Network using Packetbeat","volume":"8","author":"raja","year":"2019","journal-title":"International Journal of Innovative Technology and Exploring Engineering"},{"key":"ref9","article-title":"ELK Stack: Elasticsearch, Logstash, Kibana Elastic","year":"2020","journal-title":"elastic co"}],"event":{"name":"2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI)","location":"Pitesti, Romania","start":{"date-parts":[[2021,7,1]]},"end":{"date-parts":[[2021,7,3]]}},"container-title":["2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9514927\/9515011\/09515120.pdf?arnumber=9515120","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,5,10]],"date-time":"2022-05-10T11:45:01Z","timestamp":1652183101000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9515120\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,7,1]]},"references-count":17,"URL":"https:\/\/doi.org\/10.1109\/ecai52376.2021.9515120","relation":{},"subject":[],"published":{"date-parts":[[2021,7,1]]}}}