To develop a network intrusion detection program with Python and tshark, which would detect patterns in packet payload and logs the IP address from which the packet originated.
Hardware and Software
O/S (2 nos) – Ubuntu and Windows 7 (Linux systems can be used in lieu of Windows)
Switch ( 1 nos)
Tshark – Free download
Python – Free download
Scapy – Free download
Wireshark – Free download
Ubuntu and Windows 7 system is connected to a switch, and configured with IP addresses belonging to the same network. The Intrusion detection code runs on Ubuntu and packet with pattern is crafted and sent from Windows 7.
The packet with pattern “attack” is injected from the Windows 7 system to the code which is running on Ubuntu. The output of the code on Ubuntu is shown below.
Buy the report – Contents below
1. Project Scope
2. Hardware and Software.
3. Network topology diagram
4. Network setup procedure.
5. Code logic
6. Coding process
7. Code explanation – Python code on ubuntu, scapy code on windows 7
8. Code testing and verification process
No of Pages – 7
Report format – PDF