SNORT-GUI

SNORT GUI and Deep Model Intrusion Detection Evaluation of NSL KDD and CIC IDS 2018 datasets.

This research project implements a Network Intrusion Detection System, comparing the real-time efficiency of each method through the cumulation of an intrusion detection system and SNORT as a primitive inspiration.

Table of Contents

1. Research Architecture
2. The SNORT GUI v1.0.0
   • Pre-requisite
   • Download
   • Installation
3. Connect with Me
4. Credits

Research Architecture

Warning This is currently in progress, so I will be updating this repository.

The SNORT GUI v1.0.0

STATUS: INCOMPLETE

The SNORT GUI main program consists of:

• A rule generation tool that makes formulating rules faster.
• Open .rules file
• Provide help center.

Pre-requisite

1. A Linux distro (preferably Ubuntu).

Download

1. Download the latest snort.tar.gz release (tag: v1.0) available in the “Releases” tab.
2. Alternatively, download via Git, and access “snort/SNORT GUI/” for application files.

Installation

For first-time installation, run:

sudo python3 installerwizard.py

Figure 1.1: Terms and Conditions

Figure 1.2: Installing resources

1. After installation, you can launch the application by running:

sudo python3 snortgui.py

Figure 2.1: SNORT GUI main menu

Figure 2.2: Rule Generator GUI

Figure 2.3: Log Analyzer Tool

Note: Will be releasing the documentation for the last module run ids very soon, primary testing has been completed, but we need to incorporate a flexible system to run snort in any Ubuntu or Linux distro with snort installed, based on network interfaces, configuration file, log file path and mode of detection to be used.

Connect with me

• LinkedIn
• Blogs
• Email

Credits

Thank you Joule Effect and ChrisJD20.

This site is open source. Improve this page.