Implementation and Analysis of Security Information and Event Management at Bina Darma University

Authors

  • Suryayusra Bina Darma University Author
  • Derri Anjuju Bina Darma University Author
  • Aan Restu Mukti Bina Darma University Author
  • Akhmad Khudri Bina Darma University Author

DOI:

https://doi.org/10.35314/kdgv7x74

Keywords:

SEIM, Wazuh, Cyber Security, intrusion detection, log monitoring

Abstract

This research aims to implement Security Information and Event Management (SIEM) using Wazuh on the Bina Darma University server for real-time network security monitoring. The research uses the action research method with planning, action, observation, and reflection stages. Testing was carried out using three attack scenarios, namely Brute Force, SYN Flood, and SQL Injection, on Windows- and Ubuntu-based virtual machine environments. The research results show that Wazuh succeeded in detecting four attempted brute force attacks, a real-time SQL injection attack, and a SYN flood attack with the help of Suricata. Telegram bot integration successfully sends automatic notifications on brute force attacks. Performance testing showed CPU usage increased from 15% to 60% during the attack, while memory usage remained stable. This research is still limited to a simulation environment with a limited number of endpoints

Downloads

Download data is not yet available.

Downloads

Published

27-05-2026

Issue

Vol. 11 No. 2 (2026): May

Section

Articles

License

Copyright (c) 2026 INOVTEK Polbeng - Seri Informatika

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.

How to Cite

Implementation and Analysis of Security Information and Event Management at Bina Darma University. (2026). INOVTEK Polbeng - Seri Informatika, 11(2), 616-627. https://doi.org/10.35314/kdgv7x74