Skip to content
/ BreachWatch Public

This project aims to create a Snort-based Intrusion Detection System (STS) using Docker. The project simulates various attack scenarios to detect abnormal network traffic and potential attacks, and provides package management with a user-friendly interface.

www.linkedin.com/in/umid-mammadov-951968278/

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SUmidcyber/BreachWatch

1 Branch0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

SUmidcyberSUmidcyber
Create go.yml
Sep 22, 2024
e186edf · Sep 22, 2024

History

5 Commits
.github/workflows
.github/workflows
Sep 22, 2024
network
network
Sep 22, 2024
.gitattributes
.gitattributes
Sep 22, 2024
.gitignore
.gitignore
Sep 22, 2024
DockerFile
DockerFile
Sep 22, 2024
LICENSE
LICENSE
Sep 22, 2024
README.md
README.md
Sep 22, 2024
go.mod
go.mod
Sep 22, 2024
interface.log
interface.log
Sep 22, 2024
main.go
main.go
Sep 22, 2024

Repository files navigation

image

Intrusion Detection System Project

This project aims to create a Snort-based Intrusion Detection System (STS) using Docker. The project simulates various attack scenarios to detect abnormal network traffic and potential attacks, and provides package management with a user-friendly interface.

Features

  • Installing Snort with Docker: Provides portability and isolation by running Snort inside a Docker container.

  • Simulation of Attack Scenarios: Simulates different types of attacks (e.g. DoS, port scanning) and observes how Snort detects these attacks.

  • User Interface: Provides package management and analysis with a user-friendly interface.

Installation

  1. Install Docker. To install Docker, you can download and install the version suitable for your operating system from the official Docker website.
  2. Clone this repo:
  3. Clone this copy: ```bash git clone https://github.com/SUmidcyber/BreachWatch.git

Usage Snort Configuration: Configure Snort by editing snort.conf file.

Simulate Attack Scenarios: Simulate different types of attacks and observe how Snort detects them.

Using Interface: Perform package management and analysis through user-friendly interface.

Docker Commands

Checking Docker Version:

docker version

Viewing Docker Information:

docker info

About

This project aims to create a Snort-based Intrusion Detection System (STS) using Docker. The project simulates various attack scenarios to detect abnormal network traffic and potential attacks, and provides package management with a user-friendly interface.

www.linkedin.com/in/umid-mammadov-951968278/

Topics

golang network cybersecurity network-analysis network-programming golog

Resources

Readme

License

Apache-2.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages