Skip to content

kernelstub/NIDS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
config
config
 
 
docs
docs
 
 
scripts
scripts
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Network Intrusion Detection System

About ϟ

A sophisticated Network Intrusion Detection System (NIDS) leveraging advanced threat intelligence, machine learning, and real-time monitoring capabilities to protect your network infrastructure.

Key Features ϟ

  • Advanced Threat Intelligence

    • Real-time threat data integration
    • ML-based confidence scoring
    • Quantum-resistant cryptography
    • Blockchain-based threat sharing

  • Intelligent Detection Engine

    • Machine learning-powered anomaly detection
    • Behavioral analytics
    • Zero-day vulnerability scanning
    • Memory forensics capabilities

  • Real-time Monitoring

    • Network traffic analysis
    • Distributed monitoring system
    • Automated incident response
    • Real-time visualization

  • Comprehensive Forensics

    • Network packet capture and analysis
    • Memory forensics integration
    • Automated evidence collection
    • Chain of custody maintenance

Prerequisites ϟ

  • C++17 compatible compiler
  • CMake 3.x or higher
  • Boost libraries
  • OpenSSL
  • nlohmann/json
  • spdlog
  • libcurl

Quick Start ϟ

# Clone the repository
git clone https://github.com/kernelstub/NIDS.git

# Create build directory
mkdir build && cd build

# Configure and build
cmake ..
make

# Run the system
./nids

Documentation ϟ

Detailed documentation is available in the docs directory:

Configuration ϟ

The system can be configured through the config/nids_config.json file. See the Configuration Guide for detailed settings.

Sample Configuration 
{
  "threat_intelligence": {
    "feeds": [...],
    "update_interval": 3600,
    "cache_ttl": 86400
  },
  "detection_engine": {
    "sensitivity": "high",
    "ml_model_path": "models/"
  }
}

Architecture ϟ

The system is built with a modular architecture:

graph TD
    A[Packet Capture] --> B[Detection Engine]
    B --> C[Threat Intelligence]
    C --> D[Incident Response]
    D --> E[Visualization]
Loading

Contributing ϟ

Contributions are welcome! Please read our Contributing Guidelines before submitting pull requests.

License ϟ

This project is licensed under the MIT License - see the LICENSE file for details.

Acknowledgments ϟ

Support ϟ

For support, please open an issue in the GitHub issue tracker or contact the maintainers.

About

Network Intrusion Detection System for Threat Intelligence ML and RT network monitoring

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages