Home
Softono
Real-time-IDS

Real-time-IDS

Open source Python
GitHub
85
Stars
18
Forks
0
Issues
1
Watchers
1 year
Last Commit
ML Frameworks SIEM & Threat Detection

About Real-time-IDS

Real-time Intrusion Detection System implementing Machine Learning. We combine Supervised Learning (RF) for detecting known attacks from CICIDS 2018 & SCVIC-APT datasets, and Unsupervised Learning (AE) for anomaly detection.

Platforms

Web Self-hosted

Languages

Python

Links

Source Code
h
Published by
hoangnv2001
Visit View Profile

README.md

View on GitHub

Real-time Intrusion Detection Web App

Project III
Nguyễn Việt Hoàng - 20194434

About

  • Real-time Intrusion Detection System implementing Machine Learning.

  • We combine Supervised learning (RF) for detecting known attacks from CICIDS 2018 & SCVIC-APT datasets, and Unsupervised Learning (AE) for anomaly detection.

  • System descriptive diagram: image

Requirements:

  1. Windows OS.

  2. Python 3.9:

    Note: select "Add Python 3.9 to PATH" in installation procedure.

  3. Npcap 1.71: https://npcap.com/dist/npcap-1.71.exe

Download project folder & environment setups:

git clone https://github.com/HoangNV2001/APT_Detection cd APT_Detection

Create a virtual environment

python3.9 -m venv venv
# Activate that virtual environment
source venv/bin/activate
# Install the project requirements.
python -m pip install -r requirements.txt
# or: pip install -r requirements.txt</code>

Run program:

python application.py

Web app address: http://localhost:5000

Demo GUI

  • Main page, overview of real-time captured flows:

image

  • Flow detail page:

image