Ingeniería de Sistemas
Permanent URI for this collection
Browse
Recent Submissions
Item Generación automática de reglas procedurales a partir de objetos 3D aplicado al modelado de entornos urbanos (GENOME)(Universidad Santiago de Cali, 2025) Calvache Clavijo, Juan Felipe; Alomia Peñafiel, Gustavo Adolfo (Director)3D modeling is a virtualization technique applied in different fields such as architecture, design, video games and digital environments, the characteristics of the different techniques are given by their complexity or time consumption, therefore, the project aims to study the technique known as procedural modeling, for the creation of a tool and a workflow, that allows to reduce the time in the creation of structures in urban environments. The workflow created in the project comprises three phases, the first aims to capture information, data from geographic information systems (GIS) and photographic image analysis are integrated, the second takes the data from phase one where it is processed by software, generating procedural rules that describe how to model the captured building. The third phase consists of implementing the rules generated in Phase 2 in the CityEngine software. This tool uses procedural rules to extrude 2D axioms into complete 3D models. This project was developed in order to create a tool that would allow the construction of these structures so that the process of building digital environments could be streamlined.Item Software como herramienta complementaria durante el proceso de aprendizaje en el área de matemáticas para estudiantes de grado quinto de primaria(Universidad Santiago de Cali, 2021) Lozano Amaya, Daniela; Ochoa Асosta, Diego Fernando; Tavera, Carlos Andres (Director)Item Desarrollo de un sistema de información para teléfonos inteligentes que permita mejorar el seguimiento de los procedimientos quirúrgicos(Universidad Santiago de Cali, 2025) Hernández Zamora, Carlos Augusto; Tavera Romero, Carlos Andrés (Director)This paper presents the development of an information system for smartphones to track surgical procedures in hospitals, allowing to visualize the status of each stage, from preparation to patient recovery. The solution implements BLoC architecture and NoSQL databases for efficient data management. The methodology used was Agile Unified Process (AUP), structured in four phases: initiation, elaboration, construction and transition, allowing the identification of requirements, architecture design, system implementation and business simulation with the Enterprise Architect tool. The developed application improves the coordination and communication of the medical team, allowing greater control over surgeries and reducing interruptions caused by delays or lack of information. In this way, a support tool for the follow-up of surgical procedures was generated.Item PEIPI (Plataforma para la extracción de Informes de profesores e Investigadores)(Universidad Santiago de Cali, 2025) Bejarano Betancourt, Juan Sebastian; Tavera Romero, Carlos Andrés (Director)This paper presents a system designed to extract information from teachers and researchers of a high-quality accredited institution in Colombia, focusing on the CvLAC and GrupLAC platforms. Using advanced web scraping techniques and the Django framework, the system optimizes data collection from the Faculty of Engineering, with easy adaptation to other faculties and academic programs. The selected methodology was PSP (Personal Software Process), ensuring user-centered development and innovative solutions focused on solving the problem with automation. Django stands out as the best option thanks to its robust libraries and its compatibility with the Python language, facilitating an agile and efficient development. The main contribution of this development is to offer the USC Faculty of Engineering a computer system that reduces the time it takes to build faculty reports.Item Desarrollo de prototipo de un agente inteligente para extraer información legal en el sitio web de la rama judicial de Colombia(Universidad Santiago de Cali, 2025) Guayara Suarez, Víctor Manuel; Waitoto Garces, Luis Felipe; Alomia Peñafiel, Gustavo Adolfo (Director)Efficiency in the judicial system is crucial to ensure fairness and justice; however, the Judicial Branch in Colombia faces numerous challenges due to the manual tracking of legal proceedings, resulting in a high propensity for errors and inefficient use of resources. It is worth mentioning that this project proposes the development of a prototype of an automated legal case management system by means of an intelligent agent, using web scraping techniques. In the same way, this system will improve the efficiency and accuracy in the follow-up of legal procedures, thus optimizing the management of customer relations in a service sector company in Santiago de Cali. In this way, the implementation of this prototype in a web environment will facilitate its connection and use, adjusting to the roles provided to users and optimizing the space in its modules. At the same time, it will provide fast and efficient remote support, which will translate into greater customer satisfaction. In short, the analyses generated by the system will focus on providing better proposals for clients, contributing to an efficient and equitable judicial system.Item Prototipo de programa para la enseñanza de programación básica a personas con discapacidad visual mediante inteligencia artificia(Universidad Santiago de Cali, 2025) Mosquera Palacios, Miller Sair; Ruiz Botina, José Julián; Cerón, Lorena (Directora)The inclusion of visually impaired individuals in the world of programming is essential in an increasingly digital society. Currently, millions of people face obstacles that limit their access to technological tools, which affects their personal and professional development. This project developed a prototype program, using artificial intelligence, designed to teach basic programming concepts to visually impaired individuals. The process was developed under the waterfall methodology, ensuring structured planning from identifying needs to implementing accessible technologies such as Text-to-Speech (TTS) and Speech-to-Text (SST). The aim was to create an accessible interface that allows for efficient navigation through voice commands and keyboard input. A functional prototype is expected to be obtained that facilitates programming learning for visually impaired individuals, validated through practical tests carried out with real users. Through these tests, aspects such as usability, accessibility, and effectiveness in teaching basic programming concepts will be evaluated, identifying areas for improvement to optimize the user experience. The project conclusions will not only analyze the efficiency of the tool in acquiring programming knowledge but also its potential to reduce access barriers in technological education, increasing social and professional inclusion opportunities for visually impaired individuals. This prototype represents a significant advance toward a more inclusive education, as it provides this population group with a pathway to integrate into the technological field, promoting their active participation and the appreciation of their unique contributions in the development of new technologies.Item Análisis de la vulnerabilidad XSS persistente: Estado actual, medidas de mitigación y herramientas de detección(Universidad Santiago de Cali, 2025) Pinta Higuita, Sergio Iván; Ordoñez Serna, Farid; Rojas Montes, Javier Salvador (Director)This review article focuses on the threat of persistent Cross-Site Scripting (XSS) in web applications, covering its emergence, evolution, exploitation methods, emerging trends, and impact on the IT sector. A systematic literature review was conducted following the PRISMA methodology (Preferred Reporting Items for Systematic Reviews and Meta-Analyses), selecting relevant sources from academic databases such as SpringerLink, Taylor & Francis Online, Scopus, Google Scholar, IEEE Xplore, ACM Digital Library, and ScienceDirect. Studies were evaluated based on relevance, timeliness, and data quality. Subsequently, detection tools such as OWASP ZAP, Burp Suite, and Acunetix are reviewed, highlighting their role in the early identification of vulnerabilities. Prevention and mitigation strategies are also examined, including rigorous data validation, secure encoding, the use of frameworks and security tools, and the importance of training IT security personnel to raise awareness of cybersecurity's importance within organizations. Additionally, integrating security practices throughout the software lifecycle is proposed to ensure a robust defense against persistent XSS. The information collected was analyzed and synthesized to provide a comprehensive view of the persistent XSS vulnerability. The most relevant conclusion emphasizes the importance of a defense-in-depth approach, using detection tools, well-defined security policies, and continuous staff training as critical approaches to effectively mitigate the risks associated with persistent XSS in web applications.Item Revisión bibliográfica de la vulnerabilidad de falsificación de solicitudes del lado del servidor (SSRF)(Universidad Santiago de Cali, 2024) García Morales, Rubén Darío; Marcus Martínez, Alejandro (Director)Since 2021, server-side request forgery or SSRF began to be registered as a risk to computer security in the top 10 vulnerabilities published by the Open Web Application Security Project or OWASP (2024). The SSRF is a Web security vulnerability that allows the attacker to access a server to make HTTP or other requests to resources internal or external to the network, without the knowledge or consent of the server or authorized users who, if applicable, exploited, threatens the security of information systems, networks and data against unauthorized access, use, disclosure, interruption, modification or destruction. In that sense, literature aimed at computer security has addressed the vulnerabilities of the OWASP Top 10:2021, but in a general way, and the texts that refer to SSRF focus on making recommendations to prevent it. Therefore, the objective of this literature review is to synthesize what is known about the SSRF vulnerability; In that sense, it was proposed to succinctly address the scope of computer security, what SSRF consists of, and how it is prevented. The methodology corresponds to a systemic review of documents on the SSRF based on the OWASP 2021 report. The results indicate that attackers take advantage of failures and validation of URLs and the lack of control over the requests made by the server to exploit the SSRF. In this situation, to ensure the protection of information, it is important to identify and correct SSRF vulnerabilities through appropriate security practices.Item Análisis de pruebas de penetración en sistemas y servicios web(Universidad Santiago de Cali, 2024) Mateus Rendon, Erick Steven; Chaves Cárdenas, Dalessandro; González Mejía, Erick Santiago; Rojas Montes, Javier Salvador (Director)IT services face various risks, mainly from cyber attacks. Web penetration testing determines whether a web system is vulnerable to attacks using tools and techniques that are usually used by penetration specialists who are dedicated to identifying vulnerabilities in these. Case studies are presented in order to expose an adequate management of cybersecurity, using specialized tools such as Nessus, which includes a practical case of a university where this tool is used to evaluate the security of its websites, and also Metasploit, which together with the Kali Linux operating system addresses a practical case where IoT devices are completely compromised. The review was prepared using the PRISMA methodology, selecting 70 articles and of which 26 articles were used. This methodology guarantees the quality and reliability of the sources. Web penetration testing evaluated vulnerabilities using black, white and gray box approaches, using manual and/or automated techniques. Web penetration testing consists of a 5-phase methodology: planning, scanning, exploitation, maintaining access and generating reports. In conclusion, it was found that the combination of penetration testing approaches (black, white and grey box), together with the use of emerging technologies such as artificial intelligence, not only optimizes vulnerability detection, but also strengthens system security. The incorporation of automated tools and advanced attack simulation allows organizations to mitigate potential impacts and protect their systems more efficiently.Item Desarrollo de un equipo de estabilometría que integra podómetro y distribución de peso para patologías osteomusculares(Universidad Santiago de Cali, 2024) Muñoz Tenorio, Juan Camilo; Santafé Ramón, Yesid Eugenio (Director); Castillo García, Javier Ferney (Director)This article presents the development of an innovative device that integrates stabilometry, podometry and weight distribution for the analysis of musculoskeletal postural pathologies. Focusing on the evaluation of balance and bipedal posture through the center of gravity and plantar pressure distribution. Addressing the limitations of resources in health centers, the integration of stabilometry and podometry in a single device is proposed, offering more accurate results to diagnose postural alterations and pathologies. An exhaustive review of the state of the art is made, where the existing devices are analyzed in the document, which supports the need for a more integrated and accessible solution for people. This is achieved by focusing on the importance of the center of gravity and center of pressure in postural analysis. The article highlights the relevance of material accessibility and the generation of meaningful results. It also highlights the technical advances used in the development of the device, including the design and fabrication of hardware components and the development of specialized software for data processing and device operation. It concludes by highlighting the potential of the device to improve the diagnosis and monitoring of musculoskeletal postural pathologies and musculoskeletal disorders, integrating multiple functionalities to optimize medical care in environments with limited resources.Item Prototipo web para la administración de las relaciones con los clientes para un jardín infantil en una institución de educación superior(Universidad Santiago de Cali, 2024) Murcia Gutiérrez, Carlos Andrés; Muriel De La Cruz, Pastor Albeiro; Sanclemente Castro, Jair Enrique (Director)With this research, a web prototype was developed for the administration of customer relations in a kindergarten. The main objective was to implement a comprehensive solution that would improve efficiency in the management of processes related to different interest groups, such as students, parents and kindergarten staff. For the development of the prototype, an agile methodology was used that included requirements analysis, mockup design, iterative development of the main modules and testing with key users. The web prototype has eight main modules that cover functionalities such as the student health record, the management of the parent directory, the school menu, the coexistence manual, the general schedule and the schedule of recreational workshops, among others. The implementation of this information system has made it possible to automate tasks, centralize information and improve communication with families and kindergarten collaborators. This has translated into more effective management and a friendlier experience for everyone involved, generating added value to the client and continuous improvement in the quality of the services offered.Item Revisión de vulnerabilidades en sitios web de instituciones de educación superior en Colombia: identificación y recomendaciones para prevención y mitigación de ataques(Universidad Santiago de Cali, 2024) Alzate Romero, Santiago; Paredes Apráez, Manuel Alejandro; Loaiza Buitrago, Diego Fernando (Director)Given its wide extension and diversity, cybersecurity has become a rather complex concept to control in its entirety, either because of the different hacking techniques or some vulnerability found within the system. This article aims to present the most common vulnerabilities that may occur along with the most common monitoring tools for web pages. We randomly investigated higher education institutions that have an information system to interact with students for academic and/or administrative purposes and studied their tools used in the development of their platforms, in order to present the vulnerabilities that can be found in their internal structure. The results indicated that most of the websites are developed under the PHP programming language together with the DRUPAL tool, which showed potential vulnerabilities that cyber attackers can use to gain access to the system and that, in many cases, there is no prevention or reaction plan for these situations. For this reason, it is concluded that it is necessary to reinforce the concept of cybersecurity both in good practices or standards and in training for all positions in the organization, including the end user, which in this case would be the student.Item Diseño de infraestructura de procesamiento de datos para un sistema ERP de una empresa multinacional del sector industrial(Universidad Santiago de Cali, 2024) Rincón Raigoza, Johan MauricioThe purpose of this research is to design the data processing infrastructure for an Enterprise Resource Planning (ERP) software for a multinational company belonging to the industrial sector. The Multinational manufactures mass consumer goods in different segments for home care, hygiene and health. It is currently facing the challenge of implementing SAP GUI ERP, software developed by SAP SE, which is crucial for the efficient management of services, applications and products for the processes of this company. According to Jiménez & Gessa (2023), the implementation of tools such as SAP GUI focuses on strategic and economic benefits, and is supported by an empirical analysis that relates motivational factors to the characteristics of organizations, such as their activity and size. The main objective is to design a data processing infrastructure, taking into account the scope, to meet SAP GUI requirements. The Company does not have an adequate wire center, i.e., its current data processing infrastructure design does not support the current JDW Edwards ERP software, and for this reason it is expected to obtain improvement and adaptation to efficiently support the new ERP system. Previous research findings will be considered, such as those mentioned by Rahul Kumar (2023), the importance of SAP lies in its ability to provide highly integrated and scalable software tools that help organizations manage a wide range of business functions more efficiently. The outcome of this research will be a detailed design of the data processing infrastructure that meets the requirements of the SAP GUI ERP and the needs of the business. In conclusion, the implementation of SAP GUI represents a significant step towards the modernization and optimization of the multinational's processes. The CRISP-DM methodology is taken as a guide to answer the objective of this research and provide a solid foundation that describes the process performed in the design of the data processing infrastructure that is being proposed and allows the company to employ this delivery in favor of its strategic and economic benefits associated with ERP.Item Propuesta para la automatización del registro de inventarios de combustible mediante una aplicación web, en una estación de servicio en la ciudad de Cali.(Universidad Santiago de Cali, 2024) López Arias, José Alfredo; Contreras Herrera, Laura Vanessa; García Ocampo, Rafael Eduardo; Girón Cruz, Jorge Andrés (Director); Marcus Martínez, Alejandro (Director)Currently, the service station case study presents difficulties in obtaining resources through the exercise of its commercial activity. This has been further affected by government decisions and regulations regulating product prices. In view of this, proposals are investigated to implement to reduce operating costs and thus improve profitability. The proposed automation of inventory recording increases the time spent on value tasks by operators for the organization and is aligned with Industry 4.0 approaches. The current process is manual and error-prone, which is significantly improved by reducing runtime and abnormal variations and thus losses. The application facilitates the management of the establishment, integrating computer technologies to minimize human errors. The project combines business theory and practice, with mixed methods for collecting data. For the development, the cascade methodology is used, being structured in phases to achieve the proposed objectives including the standardization of the process. Results include process automation, reduction of errors due to human manipulation, reduced need for intervention by the service coordinator in administrative tasks, inventory reporting with reliable data and a drive towards continuous automation in the organization. This development provides new tools for greater accessibility to inventory management and other processes at service stations, promoting more efficient and accurate operation, reducing errors and losses through automation and technology..Item Análisis de la calidad en la educación superior en ingeniería durante tiempos de pandemia(Universidad Santiago de Cali, 2024) Daza Redondo, Joseph David; Proaño Sánchez, Carlos José; Pavera Romero, Carlos Andrés (Director)Item Evaluación de la madurez digital de una institución de educación superior privada en el Valle del Cauca(Universidad Santiago de Cali, 2024) Moreno Torres, Paula Andrea; Millán Castellón, Stephania; Sanclemente Castro, Yair Enrique (Director)Digital maturity describes the degree of technological appropriation based on the capabilities and skills of organizations towards digital transformation. Development through the application of technologies implies competitive advantages focused on users and clients, strengthening technological innovation and the capacity of products and services provided to different interest groups. This concept in Higher Education Institutions (HEIs) refers to the ability to effectively integrate digital technology into the substantive functions of research, extension and social projection. This research work seeks to measure the level of digital maturity in a private Higher Education Institution located in the city of Cali, Valle del Cauca. The methodological framework developed by Colombia Productive and Fedesoft was applied, digitized through the Softwhere application. The level of digital maturity obtained was ranked outstanding, classifying the institution as a digital transformer with high progress in aspects such as management approach, management and strategy of HEIs aligned towards digital transformation, while aspects such as: clients, relationship with Clients, collaborators and the flow of income promptly need actions that positively impact their level. Digital maturity is characterized by being a dynamic process in relation to technological advances and trends and the skills, capabilities and competencies of HEIs. Consequently, continuous assessment of digital maturity is essential to understand and successfully adapt to the changes that characterize the digital environment in the academic fieldItem Solución tecnológica para el seguimiento de indicadores bajo los estándares GRI-V4 en las dimensiones sociales y ambientales de extensión y proyección social en la universidad Santiago de Cali (USC)(Universidad Santiago de Cali, 2024) López Arbeláez, Laura; Sánchez Muñoz, Santiago; Cortés Vásquez, Mónica Andrea (Directora); Marcus Martínez, Alejandro (Director)Currently, the Universidad Santiago de Cali faces some challenges in the continuous monitoring of management indicators in the social and environmental dimensions of Extension and Social Projection, which makes it impossible to make strategic decisions due to the poor readability and availability of these indicators. For these reasons, the importance of establishing a solution to mitigate these challenges was highlighted; therefore, the development, evaluation, and results of a technological solution for monitoring indicators under GRI-V4 standards in the described dimensions for USC are presented. These areas interact with the academic community to address social problems, human development, environmental education, and sustainable development goals. Its impact was evaluated by adapting evaluation categories based on previous studies, including project relevance, effectiveness, measurable impact, and institutional sustainability. These categories provide quantitative and qualitative data, leveraging information from scientific databases Laura Lopez Arbelaez, Santiago Sanchez Muñoz. 2024 and similar studies on University Social Responsibility (USR) and Extension and Social Projection in Higher Education Institutions. Under this approach, the CDIO methodology (Conceive, Design, Implement, Operate) is implemented, using the 4+1 views model of Kruchten, which was used to define ideas, design models, and propose a system to mitigate the problem through a web prototype that allows managing and clearly visualizing indicators linked to the mentioned dimensions of the University. The objective of this system is to elevate academic excellence at USC, aligning university practices with ethical values and principles, as well as with the Sustainable Development Goals (SDGs). Therefore, the implementation of this solution allows USC to effectively measure the impact of its extension activities and projects and its contribution to USR.Item Desarrollo de una aplicación web para la gestión de préstamo de materiales y equipos para los laboratorios de la USC(Universidad Santiago de Cali, 2023) Imbaquin Mamian, Jonathan Steven; Ortiz Cuetia, Esteban; Navas, Karen Andrea; Tavera Romero, Carlos Andrés (Director)Item Aprendizaje profundo para el diseño y predicción de ofertas de mercado en el comercio minorista(Universidad Santiago de Cali, 2024) Calderón Parra, Bryan; Prieto Bolaños, Ricardo Andrés (Director)To carry out this project, the application of Deep Learning in the market was examined to determine supply prediction, with the purpose of developing software based on an artificial intelligence model that provides relevant information to design strategies. digital marketing in the retail sector. The functionalities of the prediction model were identified, adapting them according to the specific requirements of this area. To guarantee the reliability and effectiveness of the results of the predictive model, data collection and purification strategies based on web scrapers were used. The accuracy of the model was evaluated through the validation of acceptance criteria, the results of which suggest the effectiveness of this technology in optimizing trend analysis processes and establishing product prices. This approach seeks to reduce the uncertainty associated with the analysis of deviations related to budgets or financial forecasts that assume consumer behaviors.Item Desarrollo e implementación de un gestor de inventarios con facturación y procesamiento de ventas mediante código QR en la boutique Zona 43(Universidad Santiago de Cali, 2023) Chavarro Ortiz, Libia Marcela; Marcus Martínez, Alejandro (Director)A case study is presented on the ZONA 43 boutique, which currently lacks effective inventory control and billing processes. A mobile application based on React Native was developed and implemented to centralize information and manage orders and billing, optimizing inventory and billing processes in the boutique. The main objective was to develop a mobile application that allows for effective inventory management at ZONA 43 boutique, and specific objectives include interface and software architecture design, source code development, performance testing, and post-mortem analysis report generation. In conclusion, this research highlights the importance of adopting technological systems to enhance efficiency and competitiveness in the current market.