Skip to content

sajdoko/thesis

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
.github
.github
 
 
IDS_API
IDS_API
 
 
IDS_LIVE
IDS_LIVE
 
 
IDS_Training
IDS_Training
 
 
shared
shared
 
 
.gitignore
.gitignore
 
 
DQN Learning Process.md
DQN Learning Process.md
 
 
README.md
README.md
 
 

Repository files navigation

NSL-KDD Reinforcement Learning Intrusion Detection System

Project Architecture

This project implements and compares reinforcement learning algorithms (DQN and A3C) for network intrusion detection using the NSL-KDD dataset. The project is organized into three main components for better maintainability and deployment:

Core Components

IDS_Training/             # RL Model Training & Research
├── data/                 # Training datasets (NSL-KDD)
├── models/               # Trained models specific to training
├── utils/                # Training utilities
├── IDS_RL_Gymnasium.py   # Custom Gymnasium environment
├── IDS_DQN_Environment.ipynb  # DQN training notebook
├── IDS_A3C_Environment.ipynb  # A3C training notebook
└── README.md             # Training documentation

IDS_API/                  # REST API Service
├── ids_api.py            # Flask API server
├── train_scaler.py       # Scaler training utility
├── sample_*.json         # API testing samples
└── README_IDS_API.md     # API documentation

IDS_Live/                 # Real-time GUI Application
├── final_ids_gui.py      # Main GUI application
├── launch_ids.py         # Dependency checker & launcher
├── live_ids_predictor_fixed.py  # Packet capture utilities
├── aggressive_attack_simulator.py  # Attack simulation
└── README_Enhanced_IDS.md  # GUI documentation

shared/                   # Shared Resources
├── models/               # Trained models & scalers
├── utils/                # Common utilities
├── data/                 # Shared datasets
└── README.md             # Shared components info

Quick Start Commands

1. Training New Models

cd IDS_Training
# DQN training
jupyter notebook IDS_DQN_Environment.ipynb
# A3C training  
jupyter notebook IDS_A3C_Environment.ipynb

2. Start API Service

cd IDS_API
python ids_api.py

3. Launch Live GUI

# From project root
python IDS_Live/launch_ids.py
# or use batch file
Start_IDS_Launcher.bat

Component Launchers

# Install dependencies
pip install stable-baselines3 gymnasium scikit-learn pandas numpy torch flask scapy

# Verify installation
python IDS_Live/launch_ids.py

System Features

IDS_Training (Research & Development)

  • Purpose: Model training, experimentation, research
  • Key Files: Gymnasium environment, training notebook
  • Output: Trained DQN models, scalers, evaluation metrics

IDS_API (Service Layer)

  • Purpose: REST API for IDS predictions
  • Key Features: HTTP endpoints, JSON input/output, scalable service
  • Usage: Integrate IDS into other applications

IDS_Live (Real-time Application)

  • Purpose: Real-time network monitoring with GUI
  • Key Features: Packet capture, live detection, visual alerts
  • Target: End-user security monitoring

Shared Resources

  • Purpose: Common models, utilities, data used across components
  • Benefits: Avoid duplication, centralized model management
  • Contents: Trained models, feature engineering utilities, datasets

Installation and Setup Guide

This architecture supports the Master's thesis research on:

  • Reinforcement Learning Algorithms: DQN and A3C comparison for cybersecurity (IDS_Training)
  • Real-world deployment of RL models (IDS_API)
  • Practical security applications (IDS_Live)

Each component can be developed, tested, and deployed independently while sharing common resources.

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages