Raspberry Pi IDS
A lightweight intrusion detection system running on a Raspberry Pi home network.
Project Overview
Designed a covert and low-profile intrusion detection system utilizing a Raspberry Pi. By sitting passively on the home network, it serves as an early warning mechanism for malicious traffic, rogue devices, and malware footprints without significantly consuming network bandwidth or resources.
Key Features
- Configured the Raspberry Pi to operate as a passive network tap (mirroring traffic).
- Deployed Suricata for deep packet inspection and signature-based alerting.
- Automated daily updates for emerging threat rulesets (ET Open Rules).
- Integrated a lightweight fast-alerting interface via Telegram API for real-time notifications.
- Established custom rules for detecting anomalous baseline network behavior (e.g., unusual DNS queries).
Technologies Used
Raspberry Pi OS
Suricata
Python Scripting
Network Tapping
Telegram API