Skripsi
VISUALISASI TRAFIK SERANGAN SIBER DENGAN METODE GEO IP
The escalation of cyber attack activities demands intensive network traffic monitoring by network administrators. However, conventional monitoring methods relying on text-based log analysis are often inefficient due to the difficulty in rapidly identifying attack patterns and origins. This study aims to design and build a cyber attack traffic visualization system by applying the Geo IPmethod. This method works by translating attacker IP addresses detected by the intrusion detection system Snort into geographic coordinate data (latitude and longitude) using the MaxMind GeoLite database. The data is then mapped into a web-based interactive digital map interface. Test results indicate that the system is capable of accurately visualizing the attacker's country and city of origin. The implementation of this visualization is proven to assist network administrators in accelerating the identification process of attack sources and network security mitigation decisions compared to manual log analysis.
No other version available