Abstract:
t is widely accepted in most organizations that threats from trusted insiders pose a significant risk to the organization and are exceedingly difficult to defend against. Auditing is a widely accepted technique for detecting malicious activity on computer networks. In comparison, currently available auditing methods are typically applied uniformly and may not be an appropriate strategy for mitigating the insider threat in all circumstances.
We present a management information system auditing system, dubbed CIS-Audit, in this project. CIS-Audit is intended to aid in the auditing process of management information systems. It is defined by two primary characteristics:
1. It covers all facets of the Windows Operating System, both administrative and technical.
2. It will be possible to update and configure the Audit in real time.
