CORGI

Christopher Humphries, Nicolas Prigent, Christophe Bidan, Frédéric Majorczyk
2014 Proceedings of the Eleventh Workshop on Visualization for Cyber Security - VizSec '14  
In this article, we present CORGI, a security-oriented log visualization tool that allows security experts to visually explore and link numerous types of log files through relevant representations and global filtering. The analyst can mark values as values of interest and then use these values to pursue the exploration in other log files, allowing him to better understand events and reconstruct attack scenarios. We present the user interface and interactions that ensure these capabilities and
more » ... capabilities and provide two use cases based on challenges from VAST and from the Honeynet project.
doi:10.1145/2671491.2671494 dblp:conf/vizsec/HumphriesPBM14 fatcat:b7wx4jfsvje7vaolezjzgtugmq