Article Per Year (5 Year)
p-Index From 2021 - 2026
0.23
P-Index
This Author published in this journals
All Journal Prosiding Seminar Nasional Sisfotek (Sistem Informasi dan Teknologi Informasi)
Danniswara Putra Patria
Unknown Affiliation
Computer Science & IT

Published : 1 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 1 Documents
Search

 1 
Implementasi Security Information and Event Management (SIEM) Wazuh Untuk Deteksi Malware Zaenal Mutaqin Subekti; Mami Maryati; Suhadi; Subandri; Sabar Hanadwiputra; Danniswara Putra Patria
Prosiding SISFOTEK Vol 9 No 1 (2025): SISFOTEK IX 2025
Publisher : Ikatan Ahli Informatika Indonesia

Show Abstract | Download Original | Original Source | Check in Google Scholar

Abstract

With the development of ICT (Information and Communication Technology), cybersecurity threats to companies are becoming increasingly complex and diverse, one of which is malware that can attack endpoint devices such as computers/laptops and servers in companies. An effective approach in dealing with these challenges is to implement a SIEM (Security Information and Event Management) system that is able to monitor, analyze, and respond to security incidents in real-time by implementing an endpoint security monitoring system using the Wazuh platforsm in a structured corporate network environment. The method used in this study is the PPDIOO Method (Prepare, Plan, Design, Implement, Operate, Optimize). As a stage starting with (a) prepare is used to analyze needs, (b) plan to design IP addresses, (c) design to design network topology, (d) implement, namely implementing SIEM with wazuh installation and configuration by setting Path scanning warning malware files, (e) operate to monitor and test wazuh, (f) optimize to make modifications to improve system performance. The results of this study are that the test that has been carried out wazuh as much as 1 time can detect malware on one endpoint device and On the Wazuh dashboard, an alert notification appears that the desktop endpoint received a real-time malware attack numbering one and malware warning notifications are sent to telegram bots so that users are immediately aware, this shows that wazuh can be used to analyze, monitor and respond to security incidents
Co-Authors Mami Maryati Sabar Hanadwiputra Subandri Subekti, Zaenal Mutaqin Suhadi