DistriDuck is a distributed intrusion detection and response system. It captures network traffic, analyzes it for anomalies, and provides a user-friendly dashboard for monitoring. The goal is to make network security more accessible and manageable.
- Real-time Network Traffic Analysis: Collect and analyze network packets to detect potential threats.
- Anomaly Detection: Identify unusual patterns in network traffic.
- Data Visualization: View detailed network data through an intuitive dashboard.
- Scalable Architecture: Built to handle distributed network environments.
- Backend: Python, Flask, SQLite, Scapy, Kafka
- Frontend: React, Axios
- Message Broker: Kafka
- Deployment: Docker, AWS EC2