VizAttack: An Extensible Open-Source Visualization Framework for Cyberattacks

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review

Abstract

Visualization of cyberattacks is gaining popularity as an intuitive technique to present attack data, without overwhelming the average user. However, a security analyst needs to be presented with advanced features, allowing the correlation of the collected data in order to yield interesting findings about the attack methodology itself and utilize the newly acquired knowledge to improve the security processes of an administrative domain. Meaningful cyber security situational awareness leverages security management as it provides the global security state of the administrative domain that allows for informed decision-making on security matters. This chapter presents VizAttack, an extensible, open-source visualization framework for data generated by various security technologies. Not only it integrates and visualizes data from heterogeneous security data sources in a single framework, but it also reconstructs the steps followed during an attack execution. Furthermore, VizAttack supports on-demand queries that are constructed on the fly during the investigation of these attack profiles.
Original languageEnglish
Title of host publicationAdvances in Cybersecurity Management
EditorsKevin Daimi, Cathryn Peoples
PublisherSpringer, Cham
Chapter5
Pages75-95
Number of pages20
ISBN (Print)978-3-030-71380-5
Publication statusPublished - Jun 2021

Fingerprint

Dive into the research topics of 'VizAttack: An Extensible Open-Source Visualization Framework for Cyberattacks'. Together they form a unique fingerprint.

Cite this