{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,18]],"date-time":"2025-12-18T09:22:23Z","timestamp":1766049743195,"version":"3.28.0"},"reference-count":17,"publisher":"IEEE","license":[{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:00:00Z","timestamp":1625097600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,7,1]]},"DOI":"10.1109\/ecai52376.2021.9515120","type":"proceedings-article","created":{"date-parts":[[2021,8,23]],"date-time":"2021-08-23T18:03:11Z","timestamp":1629741791000},"page":"1-6","source":"Crossref","is-referenced-by-count":12,"title":["Cyber Attacks Detection Using Open Source ELK Stack"],"prefix":"10.1109","author":[{"given":"Razvan","family":"Stoleriu","sequence":"first","affiliation":[]},{"given":"Alin","family":"Puncioiu","sequence":"additional","affiliation":[]},{"given":"Ion","family":"Bica","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"journal-title":"misp-project org","article-title":"MISP - Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing (formerly known as Malware Information Sharing Platform)","year":"2020","key":"ref10"},{"journal-title":"elastic co","article-title":"GeoIP processor Elasticsearch Reference [7.9] Elastic","year":"2020","key":"ref11"},{"journal-title":"memcached org","article-title":"memcached - a distributed memory object caching system","year":"2020","key":"ref12"},{"journal-title":"linux die net","article-title":"auditd(8): Audit daemon - Linux man page","year":"2020","key":"ref13"},{"journal-title":"elastic co","article-title":"Beats: Data Shippers for Elasticsearch Elastic","year":"2021","key":"ref14"},{"journal-title":"Docs microsoft com","article-title":"Sysmon - Windows Sysinternals Microsoft Docs","year":"2020","key":"ref15"},{"journal-title":"GitHub com","article-title":"GitHub - SwiftOnSecurity\/sysmon-config: Sysmon configuration file template with default high-quality event tracing","year":"2020","key":"ref16"},{"journal-title":"Fireeye com[J]","article-title":"Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations FireEye Inc","year":"2020","key":"ref17"},{"key":"ref4","first-page":"1845","article-title":"Detecting and Analyzing the Malicious Linux Events using Filebeat and ELK Stack","volume":"8","author":"babu","year":"2019","journal-title":"International Journal of Engineering and Advanced Technology (IJEAT)"},{"key":"ref3","first-page":"716","article-title":"Detecting and analyzing the malicious windows events using winlogbeat and ELK stack","volume":"7","author":"praneeth","year":"2019","journal-title":"International Journal of Recent Technology and Engineering"},{"journal-title":"Fireeye com[J]","article-title":"Anatomy of an APT (Advanced Persistent Threat) Attack FireEye","year":"2020","key":"ref6"},{"key":"ref5","first-page":"667","article-title":"Intrusion Detection System using ELK Stack","volume":"7","author":"kumar","year":"2019","journal-title":"International Journal of Applied Science and Engineering Research"},{"journal-title":"elastic co","article-title":"Machine Learning for Elasticsearch Elastic","year":"2020","key":"ref8"},{"journal-title":"attack mitre org","article-title":"Matrix - Enterprise MITRE ATT&CK®","year":"2020","key":"ref7"},{"key":"ref2","first-page":"882","article-title":"Malicious Event Detection Using ELK Stack Through Cyber Threat Intelligence","volume":"8","author":"harikanth","year":"2019","journal-title":"International Journal of Innovative Technology and Exploring Engineering (IJITEE)"},{"key":"ref1","first-page":"45","article-title":"Monitoring and Analysing Anomaly Activities in a Network using Packetbeat","volume":"8","author":"raja","year":"2019","journal-title":"International Journal of Innovative Technology and Exploring Engineering"},{"journal-title":"elastic co","article-title":"ELK Stack: Elasticsearch, Logstash, Kibana Elastic","year":"2020","key":"ref9"}],"event":{"name":"2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI)","start":{"date-parts":[[2021,7,1]]},"location":"Pitesti, Romania","end":{"date-parts":[[2021,7,3]]}},"container-title":["2021 13th International Conference on Electronics, Computers and Artificial Intelligence (ECAI)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/9514927\/9515011\/09515120.pdf?arnumber=9515120","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,5,10]],"date-time":"2022-05-10T11:45:01Z","timestamp":1652183101000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9515120\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,7,1]]},"references-count":17,"URL":"https:\/\/doi.org\/10.1109\/ecai52376.2021.9515120","relation":{},"subject":[],"published":{"date-parts":[[2021,7,1]]}}}