Kumar, Kapil
Unknown Affiliation

Published : 2 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 2 Documents
Search

Automated Defense Against Application-Layer Attacks on Windows Systems Using Wazuh and Shuffle Thakker, Aastha; More, Aditya; Kumar, Kapil
International Journal of Education, Science, Technology, and Engineering (IJESTE) Vol 8 No 1: June 2025
Publisher : Lamintang Education and Training Centre, in collaboration with the International Association of Educators, Scientists, Technologists, and Engineers (IA-ESTE)

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.36079/lamintang.ijeste-0801.842

Abstract

Application-layer attacks targeting Windows systems remain a significant threat due to their ability to bypass traditional perimeter defenses. These attacks often exploit vulnerabilities listed in the OWASP Top 10 for desktop applications, demanding proactive defense mechanisms. This paper proposes a unified approach that combines SIEM and SOAR capabilities to detect and respond to Windows-based application-layer threats with increased efficiency and automation. The framework integrates the open-source SIEM platform Wazuh with the SOAR engine Shuffle to automate threat detection and incident response. A layered defense strategy is implemented, involving log correlation, rule-based policy enforcement, and playbook-driven response automation. The integration reduces manual triage overhead and enhances response time compared to traditional SOC patterns. This framework demonstrates a scalable, open-source-based solution for defending Windows environments at the application layer. It sets the groundwork for future integration of AI-driven analytics, multi-OS support, and tamper-proof event lo event logging using blockchain technologies.
Enhanced Techniques for Detecting Promiscuous Mode using Packet Fu and the Metasploit Framework Pandya, Partho; Joshi, Kashyap; Kumar, Kapil
International Journal of Education, Science, Technology, and Engineering (IJESTE) Vol 8 No 2: December 2025
Publisher : Lamintang Education and Training Centre, in collaboration with the International Association of Educators, Scientists, Technologists, and Engineers (IA-ESTE)

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.36079/lamintang.ijeste-0802.880

Abstract

This article argues that Thailand’s public-sector digitalisation has so far failed to realise the principles of Digital Era Governance (DEG) because it remains institutionally and politically anchored in New Public Management (NPM) logic. Rather than enabling platform-based integration and citizen-centric services, digital initiatives have often reproduced audit-centric, siloed practices that prioritise measurable outputs and compliance. Using a policy-analytic approach, document review of national strategies and agency plans, and synthesis of recent literature and sectoral case examples; the article identifies three mechanisms by which NPM logic is perpetuated in Thailand’s digital transition: (1) proliferation of discrete applications driven by performance reporting and agency visibility; (2) digital tools as instruments of control and compliance rather than coordination; and (3) governance fragmentation and weak interoperability governance. The paper concludes with targeted policy recommendations to reorient Thailand’s digitalisation toward DEG: consolidate digital architecture around shared platforms and standards, redesign performance regimes to reward integration and outcomes, and strengthen cross-agency data governance.