TY  - THES
N2  - Keamanan aplikasi web menjadi aspek penting dalam menghadapi ancaman siber yang semakin kompleks. Web Application Firewall (WAF) ModSecurity merupakan salah satu solusi yang mampu mendeteksi dan mencegah berbagai serangan terhadap web server secara real-time. Penelitian ini bertujuan untuk mengimplementasikan WAF ModSecurity yang terintegrasi dengan sistem monitoring berbasis web dan notifikasi Telegram, sehingga administrator dapat menerima informasi serangan dengan cepat dan akurat. Metode penelitian yang digunakan adalah Design and development Research (D&D), dengan pendekatan pengembangan sistem menggunakan Network Development Life Cycle (NDLC) yang terdiri dari analisis, desain, simulasi, implementasi, dan monitoring. Pengujian dilakukan dalam dua bagian. Pertama, pengujian fungsionalitas web monitoring menggunakan metode black box testing untuk memastikan fitur pencatatan log serangan, visualisasi data, dan pengiriman notifikasi berjalan sesuai kebutuhan. Kedua, pengujian ModSecurity dilakukan pada tiga website dengan teknologi berbeda yang berada dalam satu server Apache2 dengan mensimulasikan lima jenis serangan, yaitu Cross-Site Scripting (XSS), SQL Injection (SQLi), Local File Inclusion (LFI), Remote File Inclusion (RFI), dan Scanner Detection. Hasil pengujian menunjukkan bahwa ModSecurity berhasil mendeteksi dan memblokir seluruh serangan dari 15 pengujian. Waktu deteksi dan pengiriman notifikasi ke Telegram tercatat kurang dari satu detik pada serangan XSS, SQLi, LFI, dan RFI, sementara Scanner Detection membutuhkan waktu lebih lama akibat proses inisialisasi tools. Sistem mampu mengenali pola serangan berdasarkan signature, menyimpannya ke database, serta menampilkannya pada dashboard. Implementasi ini terbukti berpengaruh dalam meningkatkan keamanan web server dan mempercepat proses mitigasi ancaman secara real-time.
-----------
Web application security has become a crucial aspect in addressing increasingly complex cyber threats. Web Application Firewall (WAF) ModSecurity is one of the solutions capable of detecting and preventing various attacks against web servers in real-time. This study aims to implement WAF ModSecurity integrated with a web-based monitoring system and Telegram notifications, enabling administrators to receive attack information quickly and accurately. The research method applied is Design and Development Research (D&D), with a system development approach using the Network Development Life Cycle (NDLC), which consists of analysis, design, simulation prototype, implementation, monitoring, and testing. The evaluation was conducted in two parts. First, functional testing of the web monitoring system using the black box testing method to ensure that the features of attack log recording, data visualization, and notification delivery operated as required. Second, ModSecurity performance testing was carried out on three websites built with different technologies, hosted on a single Apache2 server, by simulating five types of attacks: Cross-Site Scripting (XSS), SQL Injection (SQLi), Local File Inclusion (LFI), Remote File Inclusion (RFI), and Scanner Detection. The results show that ModSecurity successfully detected and blocked all attacks across 15 test scenarios. The detection time and Telegram notification delivery were recorded at less than one second for XSS, SQLi, LFI, and RFI attacks, while Scanner Detection required more time due to the initialization process of the tools. The system was able to recognize attack patterns based on signatures, store them in the database, and display them on the monitoring dashboard. This implementation has proven to be effective in enhancing web server security and accelerating real-time threat mitigation.
M1  - other
N1  - https://scholar.google.com/citations?hl=en&pli=1&user=GTv9cEQAAAAJ

ID SINTA Dosen Pembimbing:
Devi Aprianti Rimadhani Agustini: 6745751
Deden Pradeka: 6680849
ID  - repoupi137551
TI  - IMPLEMENTASI SISTEM MONITORING KEAM ANAN WEB SERVER BERBASIS WEB APPLICATION FIREWALL MODSECURITY DENGAN NOTIFIKASI TELEGRAM
AV  - restricted
A1  - Yunus Ilyasa, -
A1  - Devi Aprianti Rimadhani Agustini, -
A1  - Deden Pradeka, -
UR  - https://repository.upi.edu/
KW  - Web Application Firewall
KW  -  ModSecurity
KW  -  Web Monitoring
KW  -  Notifikasi Telegram
KW  -  Keamanan Web server
KW  -  Web server Security.
Y1  - 2025/08/19/
PB  - Universitas Pendidikan Indonesia
ER  -