Insider threat is one of the most challenging security threats to detect because the attacker possesses legitimate access rights to the system. This research aims to analyze an insider attack scenario that exploits legal access through the Secure Shell (SSH) service in the process of data acquisition and privilege escalation on a Linux system. The research method involves simulating insider act…
The escalation of cyber attack activities demands intensive network traffic monitoring by network administrators. However, conventional monitoring methods relying on text-based log analysis are often inefficient due to the difficulty in rapidly identifying attack patterns and origins. This study aims to design and build a cyber attack traffic visualization system by applying the Geo IPmethod. T…
The implementation of the BRAVO application at the Traffic Directorate (Ditlantas) of the South Sumatra Regional Police still faces challenges such as network instability, third-party dependency, and technical disruptions, indicating weaknesses in IT governance. This study aims to assess the maturity level of IT governance using the COBIT 2019 and ITIL V4 frameworks. The research began with a d…
The focus of this research is to protect the network from DHCP Rogue (fake DHCP server), by implementing DHCP Snooping and VLAN on one of the network devices, namely a switch. The network built in this study has two routers where a legitimate router that gives the correct IP address to the client and a hacker router that gives the wrong IP address to the client, and the client will be tricked. …