Forensic analysis of Docker Swarm cluster using GRR Rapid Response framework

Citations of this article
Mendeley users who have this article in their library.


An attack on Internet network does not only happened in the web applications that are running natively by a web server under operating system, but also web applications that are running inside container. The currently popular container machines such as Docker is not always secure from Internet attacks which result in disabling servers that are attacked using DoS/DDoS. Therefore, to improve server performance running this web application and provides the application log, DevOps engineer builds advance method by transforming the system into a cluster computers. Currently this method can be easily implemented using Docker Swarm. This research has successfully investigated digital evidence on the log file of containerized web application running on cluster system built by Docker Swarm. This investigation was carried out by using the Grr Rapid Response (GRR) framework.




Sunardi, Riadi, I., & Sugandi, A. (2019). Forensic analysis of Docker Swarm cluster using GRR Rapid Response framework. International Journal of Advanced Computer Science and Applications, 10(2), 459–466.

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free