Skip to Main content Skip to Navigation
Conference papers

CORGI: Combination, Organization and Reconstruction through Graphical Interactions

Abstract : In this article, we present CORGI, a security-oriented log visualization tool that allows security experts to visually explore and link numerous types of log files through relevant representations and global filtering. The analyst can mark values as values of interest and then use these values to pursue the exploration in other log files, allowing him to better understand events and reconstruct attack scenarios. We present the user interface and interactions that ensure these capabilities and provide two use cases based on challenges from VAST and from the Honeynet project.
Complete list of metadatas

Cited literature [25 references]  Display  Hide  Download

https://hal.inria.fr/hal-01096331
Contributor : Christopher Humphries <>
Submitted on : Wednesday, December 17, 2014 - 11:41:31 AM
Last modification on : Wednesday, April 8, 2020 - 3:21:36 PM
Document(s) archivé(s) le : Monday, March 23, 2015 - 2:56:28 PM

File

humphries2014corgi.pdf
Files produced by the author(s)

Identifiers

Citation

Christopher Humphries, Nicolas Prigent, Christophe Bidan, Frédéric Majorczyk. CORGI: Combination, Organization and Reconstruction through Graphical Interactions. VizSec, Nov 2014, Paris, France. ⟨10.1145/2671491.2671494⟩. ⟨hal-01096331⟩

Share

Metrics

Record views

2169

Files downloads

538