Host Based Intrusion Detection System

by Pyo Wai Lian Hla Khin

(TP028536)
Introduction
A host-based intrusion detection system (HIDS) is a
system that monitors a computer system on which it is
installed to detect an intrusion and/or misuse, and
responds by logging the activity and notifying the
designated authority. A HIDS can be thought of as an
agent that monitors and analyzes whether anything or
anyone, whether internal or external, has
circumvented the systems security policy.

Benefits

Aims

To develop a system which monitors the

network traffic and detects any malicious IP
addresses,
To create a log file which keeps a history of all
the known threats on a computer system.

Functions

Screenshot

Monitoring and detecting any malicious threats in the IP traffic.

Allow the user to view the details of all the black listed IP addresses.

Send a notification report to the administrator on any possible threats.

Blocking a traffic and sending to quarantine for of administrator verification

Objectives
To develop an IDS for detecting abnormal network access by analysing incoming and outgoing IP address.
To develop an interface to capture network traffic.
To extract IP addresses from component traffic and safe them on the disk.
To check IP traffic with existing rules and patterns in order to detect intrusions.
To generate alarms as a pop up window as well as emits message to the administrator for detected intrusions.
To generate reports as previously detected intrusions

The cost of implementation of any security

systems can be avoided.
The admin would be able to view and keep
record of all the blacklisted IP addresses
The admin can monitor all the ingoing and
outgoing IP traffic.