Hands-On Cybersecurity Studies: Automated Scan Tool Detection

Abstract

This special report describes a hands-on cybersecurity exercise that focuses on novel research aimed at automatically collecting data and generating intrusion detection system (IDS) rules using the Generate, Examine, Match (GEM) system. In the exercise, participants create a network scenario and learn how to collect and analyze the traffic generated by a network scanning tool. Afterward, they create an IDS rule by hand. The subsequent steps lead students through how to use the GEM tool and then they automatically create IDS rules.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 11, 2023
Accession Number
AD1216439

Entities

People

  • Jaime C. Acosta

Organizations

  • United States Army Research Laboratory

Tags

DTIC Thesaurus Topics

  • Computational Science
  • Computer Programming
  • Computers
  • Cybersecurity
  • Detection
  • Detectors
  • Graphical User Interface
  • Information Security
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Military Research
  • Network Protocols
  • Operating Systems
  • Security
  • Transport Protocols
  • User Interface

Fields of Study

  • Computer science

Readers

  • Artificial Intelligence
  • Sensor Fusion and Tracking Systems.
  • Software Engineering.

Technology Areas

  • Cyber