ELVIS: Extensible Log VISualization

@inproceedings{Humphries2013ELVISEL,
  title={ELVIS: Extensible Log VISualization},
  author={Christopher Humphries and Nicolas Prigent and Christophe Bidan and Fr{\'e}d{\'e}ric Majorczyk},
  booktitle={VizSEC},
  year={2013}
}
In this article, we propose ELVIS, a security-oriented log visualization tool that allows security experts to visually explore numerous types of log files through relevant representations. When a log file is loaded into ELVIS, a summary view is displayed. This view is the starting point for exploring the log. The analyst can then choose to explore certain fields or sets of fields from the dataset. To that end, ELVIS selects relevant representations according to the fields chosen by the analyst… CONTINUE READING