Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Added an IDS/IPS tool #925

Merged
merged 2 commits into from
Oct 29, 2024
Merged

Added an IDS/IPS tool #925

merged 2 commits into from
Oct 29, 2024

Conversation

djv554
Copy link
Contributor

@djv554 djv554 commented Oct 28, 2024

Pull Request for PyVerse 💡

Requesting to submit a pull request to the PyVerse repository.

Issue Title

Please enter the title of the issue related to your pull request.
Add an Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) tool

  • I have provided the issue title.

Info about the Related Issue

What's the goal of the project?
The aim of this IDS/IPS code is to detect suspicious network activity by analyzing packet payloads and automatically block malicious IPs in real-time. It enhances network security by providing intrusion detection and prevention.

  • I have described the aim of the project.

Name

Please mention your name.
Deanne Vaz

  • I have provided my name.

GitHub ID

Please mention your GitHub ID.
https://github.com/djv554

  • I have provided my GitHub ID.

Email ID

Please mention your email ID for further communication.
vazdeanne5@gmail.com

  • I have provided my email ID.

Identify Yourself

Mention in which program you are contributing (e.g., WoB, GSSOC, SSOC, SWOC).
Contributor at GSSoC-ext and Hacktoberfest

  • I have mentioned my participant role.

Closes

Enter the issue number that will be closed through this PR.
*Closes: #890

  • I have provided the issue number.

Describe the Add-ons or Changes You've Made

Give a clear description of what you have added or modified.
This tool is an Intrusion Detection and Prevention System (IDS/IPS) using Python and Scapy which:

  • Monitors network traffic in real-time to detect suspicious packets.

  • Scans packet payloads for specific keywords that indicate malicious intent.

  • Blocks IP addresses if they repeatedly send suspicious packets, after reaching a configurable threshold.

  • Supports both IPv4 and IPv6 traffic and works across platforms (Linux, macOS, and Windows).

  • Logs all activities such as detected threats and blocked IPs for further analysis.

  • This tool enhances network security by actively monitoring and responding to potential threats.

  • I have described my changes.

Type of Change

Select the type of change:

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Code style update (formatting, local variables)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

How Has This Been Tested?

Describe how your changes have been tested.
Ran it locally on my system

  • I have described my testing process.

Checklist

Please confirm the following:

  • My code follows the guidelines of this project.
  • I have performed a self-review of my own code.
  • I have commented my code, particularly wherever it was hard to understand.
  • I have made corresponding changes to the documentation.
  • My changes generate no new warnings.
  • I have added things that prove my fix is effective or that my feature works.
  • Any dependent changes have been merged and published in downstream modules.

@github-actions GitHub Actions
Copy link

👋 Thank you for opening this pull request! We're excited to review your contribution. Please give us a moment, and we'll get back to you shortly!

Feel free to join our community on Discord to discuss more!

@UTSAVS26 UTSAVS26 merged commit 6fe3e77 into UTSAVS26:main Oct 29, 2024
1 of 2 checks passed
@UTSAVS26 UTSAVS26 added Contributor Denotes issues or PRs submitted by contributors to acknowledge their participation. Status: Approved ✔️ PRs that have passed review and are approved for merging. level1 gssoc-ext hacktoberfest hacktoberfest-accepted labels Oct 29, 2024
This was referenced Oct 30, 2024
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ruhi47 ruhi47 Awaiting requested review from ruhi47

@shaansuraj shaansuraj Awaiting requested review from shaansuraj

@TheChaoticor TheChaoticor Awaiting requested review from TheChaoticor

@UTSAVS26 UTSAVS26 Awaiting requested review from UTSAVS26

Assignees

@djv554 djv554

Labels
Contributor Denotes issues or PRs submitted by contributors to acknowledge their participation. gssoc-ext hacktoberfest hacktoberfest-accepted level1 Status: Approved ✔️ PRs that have passed review and are approved for merging.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[Code Addition Request]: Add an Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) tool
2 participants
@djv554 @UTSAVS26