File Integrity Monitoring as a Method for Detecting and Preventing Web Defacement Attacks

Candra Kurniawan; Agung Triayudi

doi:10.15575/join.v9i2.1326

JOIN: Jurnal Online Informatika (Dec 2024)

File Integrity Monitoring as a Method for Detecting and Preventing Web Defacement Attacks

Candra Kurniawan,
Agung Triayudi

Affiliations

Candra Kurniawan: Department of Communication and Information Technology, Universitas Nasional
Agung Triayudi: ORCiD; Department of Communication and Information Technology, Universitas Nasional

DOI: https://doi.org/10.15575/join.v9i2.1326
Journal volume & issue: Vol. 9, no. 2
pp. 276 – 285

Abstract

Read online

The cybersecurity landscape in Indonesia recorded an increase in cyberattacks in 2022. One of the types of attacks observed was web defacement attacks targeting government websites. In 2022, there were a total of 2,348 web defacement attacks in Indonesia, with the majority occurring in the governmental sector. In proactive efforts to monitor and prevent web defacement attacks, this study implemented the open-source tool Wazuh and activated the file integrity monitoring module to detect file changes in the system. Testing was conducted with two types of attacks: brute force attacks to gain system access and web defacement attacks involving script insertion to trigger alerts from the file integrity monitoring. The results of the testing show that the implementation of Wazuh and the file integrity monitoring module can real-time detect malicious activities and file additions, so that it can be used to mitigate cyberattacks.

Published in JOIN: Jurnal Online Informatika

ISSN: 2528-1682 (Print); 2527-9165 (Online)
Publisher: Department of Informatics, UIN Sunan Gunung Djati Bandung
Country of publisher: Indonesia
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://join.if.uinsgd.ac.id/index.php/join

About the journal

Abstract

Keywords