[ { "path": "AWS", "content": "\n" }, { "path": "Azure", "content": "\n" }, { "path": "README.md", "content": "# Cloud-DDoS (Distributed Denial of Service (DDoS))\nWelcome to the DDoS Mitigation Project! This repository contains resources and tools aimed at detecting, mitigating, and preventing Distributed Denial of Service (DDoS) Cyber attacks. The project is designed to help organizations safeguard their network infrastructure from malicious traffic and ensure the availability and security of their services.\n\nTable of Contents\nIntroduction\nFeatures\nInstallation\nUsage\nConfiguration\nContributing\nLicense\nContact\nIntroduction\nDDoS attacks are a significant threat to online services, causing downtime and loss of revenue. This project provides a comprehensive solution to detect and mitigate such attacks using various techniques and tools. The repository includes scripts, configurations, and documentation to help you set up and manage DDoS protection for your network.\n\nFeatures\nTraffic Monitoring: Real-time monitoring of network traffic to identify potential DDoS attacks.\nAnomaly Detection: Algorithms to detect unusual traffic patterns indicative of DDoS attacks.\nRate Limiting: Tools to limit the rate of incoming traffic to prevent overwhelming the server.\nIP Blacklisting: Automatic and manual blacklisting of IP addresses identified as sources of malicious traffic.\nAlerting System: Notifications and alerts to inform administrators of potential attacks.\nScalability: Designed to scale with your infrastructure, supporting both small and large networks.\nInstallation\nTo get started with the DDoS Mitigation Project, follow these steps:\n\nClone the Repository:\n\nBash\n\ngit clone https://github.com/jimmyraj18/Cloud-DDoS.git\ncd ddos-mitigation\nInstall Dependencies: Ensure you have Python and pip installed. Then, install the required Python packages:\n\nBash\n\npip install -r requirements.txt\nSet Up Configuration: Copy the sample configuration file and customize it according to your environment:\n\nBash\n\ncp config.sample.json config.json\nUsage\nTo start monitoring and mitigating DDoS attacks, run the main script:\n\nBash\n\npython main.py\nYou can also use the following commands for specific tasks:\n\nMonitor Traffic:\n\nBash\n\npython monitor.py\nBlacklist IP:\n\nBash\n\npython blacklist.py --ip \nView Logs:\n\nBash\n\npython view_logs.py\nConfiguration\nThe configuration file (config.json) includes various settings to customize the behavior of the DDoS mitigation tools. Key parameters include:\n\nthreshold: The traffic threshold to trigger DDoS detection.\nalert_email: Email address to send alerts.\nblacklist_duration: Duration (in minutes) to blacklist an IP address.\nRefer to the config.sample.json file for a complete list of configurable parameters and their descriptions.\n\nContributing\nWe welcome contributions to the DDoS Mitigation Project! If you have ideas for improvements or new features, please follow these steps:\n\nFork the repository.\nCreate a new branch for your feature or bug fix.\nCommit your changes and push the branch to your fork.\nSubmit a pull request with a detailed description of your changes.\nPlease ensure that your code adheres to our coding standards and includes appropriate tests.\n\nLicense\nThis project is licensed under the MIT License. See the LICENSE file for more details.\n\n\n\nThank you for using the DDoS Mitigation Project! We hope it helps you protect your network and maintain the availability of your services.\n\n" }, { "path": "blacklist.py", "content": "\n" }, { "path": "main.py", "content": "from pcpi import session_loader\n\n# Load Prisma Cloud credentials\nsession_manager = session_loader.load_from_file()\ncspm_session = session_manager.create_cspm_session()\n\n# Get a list of cloud accounts\naccounts = cspm_session.get('/cloud/accounts')\n\n# Get compliance violations for an account\nviolations = cspm_session.get(f'/compliance/{account_id}/violations')\n\n# ... and more\n" } ]