Network Security Manager
An advanced intrusion detection and prevention system (IDS/IPS) that monitors network traffic, detects security threats, and enforces firewall rules.
The Network Security Manager is an intrusion detection and prevention system (IDS/IPS) designed to monitor, analyze, and secure network traffic in real time. It detects suspicious activities such as port scanning, ARP spoofing, DNS spoofing, large HTTP payloads, and blacklisted IP traffic while enforcing firewall rules to prevent unauthorized access.
This system utilizes packet sniffing to inspect network packets, log security events, and generate detailed security reports. It also provides continuous bandwidth usage tracking, threat monitoring, and detection of malicious domains. The project is built with Scapy for packet analysis, Python for automation, and logging mechanisms for audit trails.
Key Features:
1.Intrusion Detection System (IDS) – Monitors and analyzes network traffic to detect anomalies.
2.Firewall Rules Enforcement – Applies predefined rules to block malicious IPs and suspicious connections.
3.Packet Sniffing – Captures and inspects network packets in real time.
4.Threat Detection & Logging – Identifies DNS spoofing, ARP spoofing, and port scanning attempts.
5.Security Reports – Generates JSON-based reports containing logs, firewall rules, and network configurations.
6.Automated Monitoring – Runs continuously as a background process for proactive security enforcement.
This project strengthens network security, prevents cyber threats, and ensures better visibility into potential vulnerabilities within a system.