$ systemctl status lss
[OK] Suricata IDS: Active
[OK] ClamAV Daemon: Running
[OK] Threat Intel Feeds: Connected
[OK] Dashboard: http://localhost:5000
$ cat description.txt
Linux Security Suite (LSS) is a comprehensive security monitoring
and control panel for Suricata IDS and ClamAV on Linux systems.
Features real-time alerts, threat intelligence integration, and
security audit dashboards for enterprise-grade protection.
FEATURES
Suricata IDS Integration
Real-time network intrusion detection with custom rule management and alert visualization.
ClamAV Antivirus
On-demand and scheduled malware scanning with quarantine management and signature updates.
Threat Intelligence
Integration with VirusTotal, AlienVault OTX, ThreatFox, and AbuseIPDB for enhanced detection.
Real-Time Alerts
Instant notification of security events with severity classification and response recommendations.
DNS/TLS Analysis
Deep inspection of DNS queries and TLS handshakes for detecting suspicious communications.
Security Audit Dashboard
Comprehensive system health checks, vulnerability assessments, and compliance reporting.
THREAT INTEL INTEGRATIONS
VirusTotal
File and URL scanning against 70+ antivirus engines and website scanners.
AlienVault OTX
Open threat intelligence community with real-time IOC feeds.
ThreatFox
Malware IOC sharing platform from abuse.ch with C2 indicators.
AbuseIPDB
IP address reputation database for identifying malicious hosts.
TECH STACK
Backend
- Python
- Flask
- SQLite
Security Tools
- Suricata IDS
- ClamAV
- Custom Rules
Frontend
- Bootstrap
- Chart.js
- WebSocket