Weverton Cordeiro,  Vanner Vasconcellos,  Antônio Abelém. 

The increasing use and importance that networks have acquired in today’s economics and social context also brought an increase in the number of malicious activities that violate privacy and security policies of institutional networks. There are several approaches that aim to detect such activities, for instance the usage of intrusion detection systems. The goal of this paper is to present an alternative malicious activity detection approach based on querying and correlation of the events registered in system logs.The purpose of this approach is to identify the hosts causing such malicious activities.

http://www.lbd.dcc.ufmg.br:8080/colecoes/wgrs/2006/st2_1.pdf

Processando consulta.