INTRUSION DETECTION AND PREVENTION SYSTEM PADA SERANGAN BRUTEFORCE, DOS, SERTA PORT SCANNING DENGAN INTEGRASI WAZUH DAN SURICATA

PUTRA, ICHSAN BUDIMAN and Yosrita, Efy and abdurrasyid, abdurrasyid (2025) INTRUSION DETECTION AND PREVENTION SYSTEM PADA SERANGAN BRUTEFORCE, DOS, SERTA PORT SCANNING DENGAN INTEGRASI WAZUH DAN SURICATA. Diploma thesis, ITPLN.

[thumbnail of 202131153_Ichsan Budiman Putra_Revisi_Skripsi_Ichsan Budiman Putra.pdf] Text
202131153_Ichsan Budiman Putra_Revisi_Skripsi_Ichsan Budiman Putra.pdf
Restricted to Registered users only
Download (13MB)

Abstract

Keamanan sistem operasi server menjadi prioritas utama di tengah meningkatnya ancaman siber seperti brute force, Denial of Service (DoS), dan port scanning. Penelitian ini bertujuan mendesain dan menerapkan sistem Intrusion Detection System (IDS) dan Intrusion Prevention System (IPS) berbasis integrasi Wazuh dan Suricata untuk mendeteksi, merespons, dan memitigasi ancaman tersebut. Penelitian dilakukan menggunakan metodologi Design Research Methodology (DRM) yang mencakup desain sistem, implementasi, dan evaluasi. Pengujian dilakukan dengan 39 skenario serangan yang mencakup bruteforce, DoS, dan port scanning. Hasil pengujian menunjukkan sistem mampu menyelesaikan 30 poin dengan tingkat keberhasilan 76,92%, sementara 9 poin dengan tingkat kegagalan 23,08%. lainnya masih membutuhkan perbaikan. Sistem ini terbukti andal dalam mendeteksi serangan secara real-time, merespons ancaman dengan tindakan otomatis seperti pemblokiran IP penyerang, memitigasi serangan, serta memberikan notifikasi kepada administrator. Temuan ini diharapkan dapat menjadi acuan dalam pengembangan solusi keamanan berbasis open-source untuk meningkatkan perlindungan sistem operasi server, serta menjadi dasar bagi penelitian lebih lanjut dalam skala yang lebih luas.

Sistem operasi server security is a top priority amidst the increasing threat of cyberattacks such as brute force, Denial of Service (DoS), and port scanning. This study aims to design and implement an Intrusion Detection System (IDS) and Intrusion Prevention System (IPS) based on the integration of Wazuh and Suricata to detect, respond to, and mitigate these threats. The research was conducted using the Design Research Methodology (DRM), encompassing system design, implementation, and evaluation. Testing involved 39 attack scenarios, including brute force, DoS, and port scanning. The results demonstrated that the system successfully addressed 30 points, achieving a success rate of 76.92%, while 9 points, with a failure rate of 23.08%, require further improvement. The system proved reliable in detecting attacks in real-time, responding to threats with automated actions such as blocking attackers' IP addresses, mitigating attacks, and notifying administrators. These findings are expected to serve as a reference for developing open-source security solutions to enhance sistem operasi server protection and form the basis for further research on a larger scale.

Item Type: Thesis (Diploma)
Uncontrolled Keywords: Keamanan Siber, Intrusion Detection System, Intrusion Prevention System, Wazuh, Suricata. Cybersecurity, Intrusion Detection System, Intrusion Prevention System, Wazuh, Suricata.
Subjects: Skripsi
Bidang Keilmuan > Teknik Informatika
Divisions: Fakultas Telematika Energi > S1 Teknik Informatika
Depositing User: Sudarman
Date Deposited: 08 Oct 2025 08:35
Last Modified: 08 Oct 2025 08:35
URI: https://repository.itpln.ac.id/id/eprint/1968

Actions (login required)

View Item
View Item