Inspiration
Traditional incident reports take time to analyze, and critical malicious activities can happen in the background without being noticed in real-time, making it difficult for users to take immediate action. Additionally, users without technical expertise are often unaware of security threats and complex attack terminology, leaving them vulnerable.
What it does
Deploys an Intrusion Detection System (IDS) that monitors network traffic in real-time, regconized malicious traffic and alerts users about the potential threat through an intuitive, and user-friendly web interface. The alerts will be anlyzed and parsed by the LLM, providing insights, and an overvall picture of the incident.
Benefit
- Real-Time alert: Users are notified immediately of malicious activity, enabling fast action and minimizing potential risks.
- Attack History Dashboard: All alerts are saved in a dashboard for easy review, allowing security analyst to track incidents and gain insights over time.
- Improved incident response process: Unlike traditional IDS, SAIDS with the helps of AI to detect anomalies and providing an helpful summary to incident respond analyst
- User-Friendly Experience: Non-technical users can understand and respond to threats through a clear, intuitive interface.
How we built it
TypeScript and React for a smooth and clear user interface. Flask handled the Back-End alongside with Gemini LLM. Leverages Snort for IDS, using pre-made .PCAP file to simulate the network traffic during a DOS attack.
Log in or sign up for Devpost to join the conversation.