Implementácia nástrojov na prácu so systemovými logmi a ich vizualizácia v prostredí katedry KIS.

The objective of this thesis is practical putting and testing of SIEM system namedELK Stack, which consist of three stand-alone objects: Logstash, Elasticsearch and Kibanaand thus creating complex system for analysis and visualization of logging messages.Introductory theoretical part contains the description of logging messages, their types andutilization. As well it deals with ELK Stack system, what are the components, what thesecomponents are doing and how we use them. In the practical part we find installation ofthis system, therefore installation of separate entity of this system together with rightconfiguration of each entity. Practical part also describes the exact procedure of workingwith this system, offering user manual. At the end of this thesis, we summarize some prosand cons of this system and also we compare ELK Stack with another, similar system,especially with Graylog2.