PortSentinel is a simple, lightweight Intrusion Detection System built using Scapy. It monitors incoming TCP traffic to detect potential port scanning attacks on your network.
- Detects TCP port scans based on connection frequency
- Customizable thresholds via command-line
- Logs alerts to
alerts.log - Colored terminal output using
colorama - Graceful shutdown with Ctrl+C
- Python 3.7+
- Npcap (Windows only)
- Admin/root privileges for sniffing
- Clone the repo
git clone https://github.com/yourusername/PortSentinel.git cd PortSentinel