With the increasing number of cyberattacks, securing networks has become more critical than ever. Traditional Intrusion Detection Systems (IDS) often struggle with evolving threats and produce too many false positives. To address these challenges, we built an AI-Based Network Intrusion Detection System (NIDS) that leverages machine learning and deep learning to detect anomalies in network traffic.
What Inspired Us?
Cybersecurity threats are growing, and we wanted to create an intelligent system that can learn and adapt to new attack patterns. Inspired by real-world cyber incidents and the need for automated security, we developed this AI-powered solution.
How We Built It?
Data Collection: We used the NSL-KDD dataset and real-time network traffic logs.
Preprocessing: Applied feature selection, normalization, and encoding for ML training.
Model Development: Trained Random Forest, SVM, and Deep Learning models (LSTMs, CNNs) to classify network traffic as normal or malicious.
Deployment: Built an API using Flask/FastAPI, integrated with Snort/Suricata for real-time analysis.
Dashboard: Created a React.js frontend with Grafana for visualization.
Cloud Deployment: Hosted on AWS/GCP/Azure for scalability.
Challenges We Faced
Reducing false positives without missing real attacks.
Handling large-scale network data efficiently.
Deploying a real-time, low-latency AI model for intrusion detection.
Built With
- alerts
- amazon-web-services
- api)
- backend
- cloud
- compute
- docker
- ec2
- engine
- fastapi
- flask
- for
- frontend
- gcp
- grafana
- kubernetes
- ml
- mysql
- packet
- platforms
- postgresql
- python-(tensorflow
- pytorch
- react.js
- scikit-learn)
- services:
- storing
- tcpdump
- visualization)
- wireshark
Log in or sign up for Devpost to join the conversation.