1. Kotlaba, L.: Detection of Active Directory attacks. Bachelor’s thesis. Czech Technical University in Prague, Faculty of Information Technology (2019)

2. Siva Niranjan Raja, M., Vasudevan, A.R.: Rule generation for TCP SYN flood attack in SIEM environment. In: 2017 Procedia Computer Science, vol. 115, pp. 580–587, ISSN: 1877-0509

3. Sekharan, S.S., Kandasamy, K.: Profiling SIEM tools and correlation engines for security analytics. In: 2017 International Conference on Wireless Communications, Signal Processing and Networking (WiSPNET), Chennai, 2017, pp. 717–721

4. Fujimoto, M., Matsuda, W., Mitsunaga, T.: Detecting abuse of domain administrator privilege using windows event log. In: 2018 IEEE Conference on Application, Information and Network Security (AINS), Langkawi, Malaysia, 2018, pp. 15–20

5. Nair, H., Sridaran, R.: An innovative model (HS) to enhance the security in windows operating system—a case study. In: 2019 6th International Conference on Computing for Sustainable Global Development (INDIACom), New Delhi, India, 2019, pp. 1207–1211