A lightweight yet powerful LAN Monitoring & Cybersecurity Platform designed to detect unauthorized devices, monitor system activity, and provide administrators with real-time network visibility.
π Built as a final-year project demonstrating practical implementation of cybersecurity, network monitoring, and SOC-style systems.
| Login page | Dashboard |
|---|---|
 |
 |
| Scan Port | Logs Viewer |
 |
 |
β Real-time device monitoring
β LAN network discovery (ARP + Ping scanning)
β Rogue / unauthorized device detection
β Duplicate IP & spoofing detection
β Trusted device approval system
β Live SOC-style dashboard
β Port scanning with risk classification
β PDF security report generation
β CPU & RAM monitoring of client systems
β Scan history logging (SQLite)
Client Agent (agent.py)
β
β Sends system data every 10 seconds
βΌ
Flask Server (app.py)
β
βββ Device Monitoring API
βββ Logging & Activity Monitoring
βββ Network Scanner (ARP + Ping)
βββ Rogue Device Detection
βββ Device Authorization Management (Approve / Disapprove)
βββ Port Scanner Module
βββ Report Generator (PDF)
βββ Admin Dashboard (Web Interface)
β
βΌ
SQLite Database (sccsims.db)
| Component | Technology |
|---|---|
| Backend | Python |
| Web Framework | Flask |
| Database | SQLite |
| Network Scanning | Scapy, Socket |
| Concurrency | Multithreading(ThreadPoolExecutor) |
| Data Visualization | Matplotilib, NumPy |
| System Monitoring | psutil |
| Frontend | HTML, CSS, JavaScript |
| Reporting | ReportLab |
| Security | Werkzeug (Password Hashing) |
-
Implemented using Pythonβs built-in logging module
-
Tracks:
- Server activity
- Network scans
- Threat detection events
- Admin actions (approve/disapprove)
-
Logs stored in:
sccsims.log
git clone https://github.com/ByteBandit-100/SCCSIMS.git
cd SCCSIMSpip install -r requirements.txtINTERFACE = [your_system_working_interface_id]
OR
INTERFACE = None #BY DEFAULT
python app.pyπ Access Dashboard:
http://localhost:5000
Username: admin
Password: admin123
On each client machine:
SERVER_URL = "http://SERVER_IP:5000/api/device"python agent.pyπ‘ Device sends system data every 2 seconds*
- Detects all devices in LAN
- Tracks IP, MAC, hostname
- Real-time updates
- Rogue device detection
- Duplicate IP detection
- Unauthorized access alerts
- Multi-threaded scanning
- Risk classification (LOW / HIGH)
- Live scan updates
- Professional PDF reports
- Risk highlighting (RED for HIGH)
- Summary + recommendations
- Network Discovery
- Device Fingerprinting
- Rogue Device Detection
- Port Vulnerability Analysis
- Real-Time Monitoring
- Basic SOC (Security Operations Center) Design
π₯ SOC-style dashboard (rare in student projects)
π₯ Terminal + Web hybrid monitoring
π₯ Real-time threat detection
π₯ Automated PDF reporting system
- Works only in LAN environment
- No advanced IDS (Snort/Suricata level)
- No encrypted communication between agent & server
- Basic authentication system
- Intrusion Detection System (IDS)
- ARP spoofing protection
- WebSocket real-time updates
- Role-based authentication
- Network topology visualization
- Cloud deployment support
Mohit (ByteBandit-100)
Feel free to fork, improve, and submit pull requests!
This project is for educational purposes.
This project demonstrates how cybersecurity concepts can be implemented in a real-world mini SOC system, making it highly suitable for academic and practical learning.