Network anomaly detection in the Microsoft Windows system logs using machine learning methods
DOI: 10.21293/1818-0442-2021-24-4-27-32
Abstract: An algorithm for network anomaly detection in the system security logs of the Microsoft Windows operating system with using machine learning methods was developed. Preprocessing, clustering, and visualization of the studied data were carried out. The proposed algorithm has confirmed its efficiency by identifying events in the studied dataset that indicate the operation of a malicious software.
Keywords: cybersecurity audit, windows system journals, machine learning, clusterization, network anomaly
Authors and copyright holders:
—
For citation:
Pavlychev A. V., Soldatov K. S., Skazin V. A. Network anomaly detection in the Microsoft Windows system logs using machine learning methods. Doklady Tomskogo gosudarstvennogo universiteta sistem upravleniya i radioelektroniki, 2021, vol. 24, no. 4, pp. 27–32. DOI: 10.21293/1818-0442-2021-24-4-27-32
Last issue
-2025-1.jpg)
Editorial office address
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 701-582
Viktor N. Maslennikov
Executive Secretary of the Editor’s Office
Editor’s Office: 40 Lenina Prospect, Tomsk, 634050, Russia
Phone / Fax: + 7 (3822) 51-21-21 / 51-43-02
Subscription for updates
