USEFUL PYTHON LIBRARIES FOR CREATING IDS SOFTWARE

Authors

  • Ivan Babić
  • Aleksa Maksimović MUP RS
  • Slobodan Nedeljković
  • Mihailo Jovanović
  • Dragan Randjelović
  • Milan Čabarkapa

Keywords:

Python, IDS, Eddie, Pypcap, Scapy, SimpleMonitor

Abstract

Abstract: This paper represents all possibilities of Python programming language for detecting intrusion attacks whose purpose is to penetrate secured network or secured computer. Reading this paper we are going to see Python libraries that we can use for monitoring network traffic and eventually use them for making IDS software (Intrusion detection system). After preview of libraries with those capabilities we are going to represent a simple example of IDS software solution so readers can see how mentioned libraries can be used for that kind of software.

 

References

• Eddie-tool project, http://eddie-tool.psychofx.com/
• Pypcap project, https://buildmedia.readthedocs.org/media/pdf/pypcap/latest/pypcap.pdf
• LinkChecker project, https://github.com/linkchecker/linkchecker
• Scrapy project, https://scrapy.org/
• Simplemonitor project, https://jamesoff.github.io/simplemonitor/
• Gustav, K., Network Monitoring and Programming Using Python, Open Source For You (2015)

Downloads

Published

2020-07-14

Issue

Section

Informatics and Applied Mathematics in Forensic, Cybercrime and Security Science