Skip to content

vardhan232/web-log-ids

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

5 Commits
sample_logs
sample_logs
Β 
Β 
.gitignore
.gitignore
Β 
Β 
README.md
README.md
Β 
Β 
main.py
main.py
Β 
Β 
requirements.txt
requirements.txt
Β 
Β 

Repository files navigation

πŸ” Web Log Intrusion Detection System (IDS)

This project is a basic Intrusion Detection System (IDS) that analyzes Apache/Nginx web server access logs to detect suspicious activities such as brute force login attempts, directory traversal attacks, and high-frequency request spikes.

πŸš€ Features

  • βœ… Parses real Apache-style log files using Python
  • πŸ” Detects:
    • Brute force login attempts (401 / 403)
    • Directory traversal patterns (../)
    • High request rate from specific IPs
  • πŸ“Š Uses pandas for data handling and analysis
  • πŸ’‘ Easy to extend for more advanced detections

πŸ“ Project Structure

web-log-ids/ β”œβ”€β”€ main.py # Main detection script β”œβ”€β”€ sample_logs/ β”‚ └── access.log # Example log file β”œβ”€β”€ requirements.txt # Python dependencies β”œβ”€β”€ README.md # Project documentation └── .gitignore

πŸ› οΈ How to Use

1. Clone this repository

git clone https://github.com/vardhan232/web-log-ids.git
cd web-log-ids


pip install -r requirements.txt

python3 main.py




=== Brute Force IPs ===
192.168.1.10    4

=== Directory Traversal Attempts ===
192.168.1.20 GET /../../etc/passwd

=== Top 5 IPs by Request Count ===
192.168.1.10    6
192.168.1.30    2
...


---

Let me know once it’s added! I can also help you make a GitHub project banner or badge if you want to make the repo stand out visually.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages