Skip to content

HACKWAVE2025/B69

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
api
api
 
 
dashboard
dashboard
 
 
data
data
 
 
kafka
kafka
 
 
ml_engine
ml_engine
 
 
scripts
scripts
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
ACCURACY_SUMMARY.md
ACCURACY_SUMMARY.md
 
 
DATASET_GUIDE.md
DATASET_GUIDE.md
 
 
EXPECTED_TRAINING_OUTPUT.md
EXPECTED_TRAINING_OUTPUT.md
 
 
FIX_GIT_LARGE_FILES.md
FIX_GIT_LARGE_FILES.md
 
 
FRONTEND_BACKEND_INTEGRATION.md
FRONTEND_BACKEND_INTEGRATION.md
 
 
HOW_TO_RUN.md
HOW_TO_RUN.md
 
 
HUGGINGFACE_DATASET.md
HUGGINGFACE_DATASET.md
 
 
INTEGRATION_CHECK.md
INTEGRATION_CHECK.md
 
 
MODEL_TRAINING_OUTPUT.txt
MODEL_TRAINING_OUTPUT.txt
 
 
MONGODB_GUIDE.md
MONGODB_GUIDE.md
 
 
QUICKSTART.md
QUICKSTART.md
 
 
QUICK_RUN.md
QUICK_RUN.md
 
 
README.md
README.md
 
 
RUN_LOCALHOST.md
RUN_LOCALHOST.md
 
 
RUN_TRAINING.sh
RUN_TRAINING.sh
 
 
START_SERVERS.sh
START_SERVERS.sh
 
 
requirements.txt
requirements.txt
 
 
start_backend.sh
start_backend.sh
 
 
start_frontend.sh
start_frontend.sh
 
 

Repository files navigation

NetSage ML – Network Anomaly Detection Platform

Real-time network anomaly detection system using Kafka for data streaming, MongoDB for persistence, and Python ML models for behavioral analytics.

🧩 Overview

NetSage ML is a real-time system that detects network anomalies using machine learning only — no IDS or packet capture tools. It consumes streaming flow/telemetry data via Kafka, stores enriched results in MongoDB, and visualizes alerts and trends in a React dashboard.

⚙️ Tech Stack

  • Streaming: Apache Kafka
  • Backend: FastAPI (Python)
  • Database: MongoDB
  • ML Engine: scikit-learn + PyOD + TensorFlow (for optional AutoEncoder)
  • Frontend: React + Tailwind CSS + Chart.js
  • Visualization: Grafana-ready APIs

🚀 Quick Start

Prerequisites

  • Python 3.9+
  • Node.js 16+
  • MongoDB running on localhost:27017
  • Kafka running on localhost:9092

Installation

  1. Clone and setup Python environment:
cd netsage-ml
python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate
pip install -r requirements.txt
  1. Setup environment variables:
cp .env.example .env
# Edit .env with your configuration
  1. Train initial models:
python scripts/train_iforest.py

  1. Start MongoDB and Kafka (if not already running)

  2. Start the FastAPI backend:

python -m uvicorn api.main:app --reload --port 8000
  1. Start Kafka consumer (ML pipeline):
python kafka/consumer.py
  1. Start Kafka producer (mock data):
python kafka/producer.py
  1. Setup and start React dashboard:
cd dashboard
npm install
npm start

📁 Project Structure

netsage-ml/
├── kafka/
│   ├── producer.py          # Simulates flow events
│   └── consumer.py          # Feeds ML pipeline
├── ml_engine/
│   ├── feature_extractor.py # Feature engineering
│   ├── anomaly_detector.py  # ML model wrapper
│   ├── models/              # Trained model files
│   └── train_model.py       # Training script
├── api/
│   ├── main.py              # FastAPI app
│   ├── routes/              # API endpoints
│   └── models/              # Pydantic models
├── dashboard/               # React frontend
├── scripts/                 # Utility scripts
└── .env.example

🧠 ML Models

  • Isolation Forest: Fast unsupervised anomaly detection
  • DBSCAN: Clustering-based anomaly detection
  • AutoEncoder: Deep learning anomaly detector (optional)

🌟 Features

✅ 100% ML-based anomaly detection (no IDS or DPI) ✅ Real-time Kafka streaming ingestion ✅ MongoDB storage for alerts & flows ✅ Modular ML architecture (swap models easily) ✅ React dashboard for real-time visualization

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages