Network Attack Detection Using Intrusion Detection System Utilizing Snort Based on Telegram-Reference-Cited by-同舟云学术

Network Attack Detection Using Intrusion Detection System Utilizing Snort Based on Telegram

Published:2023-12-28 Issue:2 Volume:6 Page:118-126
ISSN:2622-2728
Container-title:bit-Tech
language:
Short-container-title:bit-Tech

Author:

Dharma Juan Adi,Rino

Abstract

The constantly evolving of information technology landscape has made information security something of paramount importance, yet the development of information technology is not met with a corresponding advancement in its security systems. As a result, in the current era, there is a multitude of cybercrimes in the realm of the internet. Therefore, this research aims to create a computer network attack detector using the Linux operating system by leveraging the Telegram-based Snort application and employing the Intrusion Detection System (IDS) method through an IDS-based application, namely Snort. Additionally, this study incorporates features for blocking IP addresses and changing the Linux server password through the Telegram application for initial response when an attack is detected, accomplished by sending specific commands within the Telegram application. Furthermore, this paper also introduce a feature for categorizing the risk of computer network attacks into three categories: Low, Medium, and High within the Telegram application. The results of this research demonstrate that Snort can detect predefined rules and send alerts to the Telegram application for every attack occurring within the Wireless Local Area Network (WLAN). Successful IP address blocking is achieved through Telegram integration with the Iptables application, and changing the Linux server password is also accomplished through Telegram by integrating the bash shell programming language found in the Terminal of the Linux operating system. Finally, the risk of attacks can be viewed within the Telegram application.

Publisher

Komunitas Dosen Indonesia

Reference18 articles.

1. R. Pangestu and A. Solichin, “Klasifikasi Serangan Jaringan Menggunakan Metode Decision Tree Berbasis Website,” Jurnal Seminar Nasional Mahasiswa Fakultas Teknologi Informasi (SENAFTI), vol. 1, no. 1, pp. 614–620, Apr. 2022, [Online]. Available: https://senafti.budiluhur.ac.id/index.php/

2. B. Wijaya and A. Pratama, “Deteksi Penyusupan Pada Server Menggunakan Metode Intrusion Detection System (IDS) Berbasis Snort,” SISFOKOM(Sistem Informasi dan Komputer), vol. 09, no. 1, pp. 97–101, 2020, doi: 10.32736/sisfokom.v9.i1.770.

3. L. F. Nainggolan, N. F. Saragih, and F. G. N. Larosa, “Monitoring Keamanan Jaringan Pada Server Ubuntu Dari Serangan DDoS Menggunakan Snort IDS,” Jurnal Ilmiah Teknik Informatika , vol. 2, no. 2, pp. 1–10, Apr. 2022, [Online]. Available: http://ojs.fikom-methodist.net/index.php/METHOTIKA

4. I. G. W. Bangga and S. M. Ladjamuddin, “SIMULASI SNORT SEBAGAI ALAT PENDETEKSI INTRUSI PADA WEB DAMN VULNERABLE WEB APPLICATION,” Jurnal Rekayasa Informasi, vol. 11, no. 2, pp. 160–167, Apr. 2022.

5. P. S. Fat, Khairil, and E. P. Rohmawan, “Perancangan Dan Implementasi Intrusion Detection System (IDS) Untuk keamanan Wireless Local Area Network (WLAN) Pada SMKN 5 Kota Bengkulu,” Jurnal Media Computer Science, vol. 2, no. 1, pp. 1–8, 2023.