A GUI Framework for detecting Intrusions using Bro IDS

Network security is the provision made in an underlying computer network or rules made by the administrator to protect the network and its resources from unauthorized access. To make network secure, an Intrusion detection system is one of the efficient system. Bro is an open source Network Intrusion Detection System that monitors network traffic, check for suspicious activities and notifies the system or network administrator. Some Policy Scripts are already built in Bro IDS. In this work, various types of live traffic is captured and analyzed. Some new policy scripts are built to filter out the needed packets from the captured traffic. Also, a Graphical User Interface is designed to eliminate the need of writing of commands at terminal and making it easy for users to create the scripts and run them on captured traffic. A GUI framework is integrated in Bro that analyzes and filters the traced network traffic.