TY - JOUR KW - cybersecurity testbed KW - network operations center KW - security operations center KW - NOC KW - SOC KW - integration KW - network traffic analysis KW - open-source tools AU - Goce Stevanoski AU - Marko Porjazoski AU - Aleksandar Risteski AU - Mitko Bogdanoski AB -
This article proposes a testbed IT environment that includes an Integrated Network Operations Center and a Security Operations Center based on open-source tools for conducting cybersecurity research. The testbed is capable of monitoring and configuring network devices and systems. The design includes physical devices, virtual machines, and strategically deployed sensors for performance and security-related data collection. It enables the study of network traffic, anomaly detection, and cybersecurity threats. The framework serves as a foundation for cybersecurity testing, offering real-time insights into the network’s behavior, detecting faults, and identifying potential vulnerabilities.
BT - Information & Security: An International Journal DO - https://doi.org/10.11610/isij.5550 IS - 1 N2 -This article proposes a testbed IT environment that includes an Integrated Network Operations Center and a Security Operations Center based on open-source tools for conducting cybersecurity research. The testbed is capable of monitoring and configuring network devices and systems. The design includes physical devices, virtual machines, and strategically deployed sensors for performance and security-related data collection. It enables the study of network traffic, anomaly detection, and cybersecurity threats. The framework serves as a foundation for cybersecurity testing, offering real-time insights into the network’s behavior, detecting faults, and identifying potential vulnerabilities.
PY - 2024 SE - 81 SP - 81 EP - 94 T2 - Information & Security: An International Journal TI - Testbed of an Integrated Network Operations Center and a Security Operations Center Based on Open-Source Tools VL - 55 ER -