# 🛡️ AI Intrusion Detection System
Using Random Forest and Anomaly-Based Machine Learning

This notebook demonstrates how to detect network intrusions with machine-learning techniques on synthetic data.

In [ ]:
import pandas as pd
from sklearn.model_selection import train_test_split
from sklearn.preprocessing import LabelEncoder, StandardScaler
from sklearn.ensemble import RandomForestClassifier
from sklearn.metrics import accuracy_score

# --- Sample synthetic dataset ---
data = {
    'duration': [10, 0, 5, 2, 8, 20],
    'protocol': ['tcp', 'udp', 'tcp', 'icmp', 'tcp', 'udp'],
    'src_bytes': [100, 2000, 300, 50, 1200, 400],
    'dst_bytes': [500, 0, 100, 2000, 100, 20],
    'flag': ['SF', 'REJ', 'SF', 'SF', 'S0', 'REJ'],
    'intrusion': [0, 1, 0, 0, 1, 1]
}
df = pd.DataFrame(data)

# Encode categorical features
enc = LabelEncoder()
df['protocol'] = enc.fit_transform(df['protocol'])
df['flag'] = enc.fit_transform(df['flag'])

X = df.drop('intrusion', axis=1)
y = df['intrusion']

scaler = StandardScaler()
X_scaled = scaler.fit_transform(X)

# Split and train
X_train, X_test, y_train, y_test = train_test_split(X_scaled, y, test_size=0.3, random_state=42)
model = RandomForestClassifier(random_state=42)
model.fit(X_train, y_train)

# Evaluate
preds = model.predict(X_test)
acc = accuracy_score(y_test, preds)
print(f'Model Accuracy: {acc*100:.2f}%')