Be the first to like this
The main problem one faces today is the breach of security in computers. Most of the computers used in many organisations are under grave threats by attackers and hackers. Nowadays the employees of a firm themselves could resort to attack or hack on their own company assets. A serious cat and mouse game is going on between the security experts and hackers. It is absolutely vital to stop the hackers in their tracks. In this project, I have developed a soft-ware that monitors the system and warns the user (administrator) in times of crisis. In this case, crisis refers to break-in attempts by any attacker on an organisation. The main reason for addressing this problem is to save the company from jeopardy and prevent the loss of its essential data. These break-in attempts need to be tackled from time to time and should not be left to accumulate over a long period of time. I went about solving this problem by looking for critical logs which would have alerts warning about illegal entries. This project is designed to look for appropriate vulnerable logs in syslog. These logs should be read out using a program which can identify the critical alert lines found in the logs and will alert the user by printing out the details correspondingly. It effectively alerts the user about the attack and the duration of that attempt. Then, there is a sleep time for a minute and it restarts to monitor after a minute to find updated logs. This is achieved by using the Python code’s regular expression features in this project. It is in the form of a console application which fulfills my objectives fairly well.