A comprehensive cybersecurity monitoring and analysis platform built with Python that provides advanced threat detection, vulnerability assessment, and real-time security monitoring through an intuitive web-based dashboard.
A-Ryan Security is a sophisticated security enhancement tool that extends beyond traditional antivirus protection by integrating multiple layers of security analysis including AI-powered threat detection, network anomaly detection, vulnerability scanning, and comprehensive system monitoring. The platform provides real-time insights and automated security recommendations to help users maintain a robust security posture.
- OSV-Scanner Integration: Automated vulnerability scanning using Google's OSV database
- Custom Directory Scanning: User-selectable scan paths with configurable options
- Comprehensive Vulnerability Assessment: Detection of security issues in dependencies and packages
- Scan History Tracking: Complete audit trail of all security scans with detailed results
- Enhanced Antivirus Layer: Integration with Windows Defender for multi-layered protection
- Real-time Process Monitoring: Continuous analysis of running processes and system services
- Startup Program Analysis: Security assessment of system startup configurations
- Firewall Status Monitoring: Real-time firewall rule analysis and status reporting
- Network Traffic Analysis: Machine learning-powered anomaly detection using PyTorch
- Nmap Integration: Comprehensive network scanning and service detection
- Packet-level Analysis: Deep packet inspection using Scapy for threat identification
- Network Interface Monitoring: Real-time network statistics and interface analysis
- Threat Prediction: Machine learning models for identifying suspicious network patterns
- Automated Analysis: AI-driven security recommendations and risk assessments
- Ollama Integration: Advanced AI analysis for comprehensive threat evaluation
- OpenAI-Compatible APIs: Support for LM Studio, LocalAI, vLLM, and OpenAI itself
- Behavioral Analysis: Intelligent detection of anomalous system behavior
- Real-time Monitoring: Live security status updates via WebSocket connections
- Interactive Visualizations: Charts and graphs for security metrics and trends
- Historical Data Analysis: Comprehensive logs and audit trails
- Responsive Interface: Bootstrap-powered responsive design for all devices
- Role-Based Access Control: Multi-level user permissions and access management
- Secure Authentication: Flask-Login with bcrypt password hashing
- Audit Logging: Comprehensive tracking of all user actions and system events
- Session Management: Secure session handling with configurable timeouts
- CSRF Protection: Cross-site request forgery prevention
- Rate Limiting: Protection against brute force attacks
- Web Framework: Flask with SocketIO for real-time communications
- Database: SQLite with SQLAlchemy ORM and migration support
- Authentication: Flask-Login with secure password policies
- Caching: Flask-Caching with Redis support for performance optimization
- Task Scheduling: APScheduler for background job management
- Vulnerability Scanning: OSV-Scanner for dependency analysis
- Network Analysis: Nmap and Scapy for comprehensive network assessment
- System Monitoring: psutil for real-time system metrics
- AI/ML: PyTorch for machine learning models, Ollama for AI analysis
- UI Framework: Bootstrap for responsive, mobile-friendly interface
- Real-time Updates: SocketIO for live data streaming
- Charts & Visualizations: Interactive security metrics and reporting
- Form Handling: Flask-WTF with CSRF protection
- Operating System: Windows 10/11 (64-bit)
- RAM: 8GB minimum, 16GB recommended
- Storage: 2GB free space for installation and logs
- Network: Active internet connection for updates and AI services
- Python: 3.8 or higher
- Administrator Privileges: Required for full functionality
- External Tools:
- Nmap (network scanning)
- OSV-Scanner (vulnerability assessment)
- Ollama (AI analysis)
# Create virtual environment
python -m venv venv
# Activate virtual environment
# Windows:
venv\Scripts\activate
# Install Python dependencies
pip install -r requirements.txt- Download from: https://nmap.org/download.html
- Run the installer and select "Add to PATH" option
- Restart your terminal/PowerShell
https://github.com/google/osv-scanner/releases
# Download OSV-Scanner binary
# Place osv-scanner_windows_amd64.exe in project root# Install Ollama from https://ollama.com/download
ollama pull gemma3:4b# Initialize database with default admin user
python init_db.pyCreate a .env file or set environment variables:
# Required environment variables
SECRET_KEY=your-secret-key-here
FLASK_ENV=development
ADMIN_PASSWORD=your-secure-admin-password# Run as administrator for full functionality
python main.py- Open web browser and navigate to:
http://127.0.0.1:5000 - Login with default credentials:
- Username: admin
- Password: AdminPassword123! (change immediately)
- Change Default Password: Navigate to change password section
- Configure Scan Paths: Set preferred directories for vulnerability scanning
- Review Security Settings: Check firewall and system configurations
- Run Initial Scans: Perform comprehensive security assessment
- Minimum 12 characters with complexity requirements
- 90-day expiration with forced change notifications
- Account lockout after 5 failed attempts
- Secure password reset mechanisms
- Role-based permissions (admin/user)
- Session timeout management
- IP-based access logging
- Comprehensive audit trails
- Real-time anomaly detection
- Network traffic monitoring
- Firewall rule analysis
- Port scanning protection
In addition to local Ollama instances, A-Ryan-Security supports any OpenAI-compatible API (e.g., LM Studio, LocalAI, vLLM, or OpenAI itself).
- Navigate to AI Settings in the dashboard.
- Select OpenAI Compatible as the provider.
- Enter your API Base URL (e.g.,
http://localhost:1234/v1). - Enter your Model ID (e.g.,
gpt-4oorlocal-model). - (Optional) Enter your API Key for remote providers.
You can also set defaults in your environment variables:
AI_PROVIDER=openai
AI_API_URL=https://api.openai.com/v1
AI_MODEL=gpt-4o
AI_API_KEY=your-api-key# Run all tests
pytest tests/ -v
# Run with coverage report
pytest tests/ --cov=. --cov-report=html
# Run specific test categories
pytest tests/test_vuln_checker.py -v
pytest tests/test_network_analyzer.py -v- 55 comprehensive tests covering all major components
- Unit tests for individual modules
- Integration tests for web interface
- Security and authentication testing
- Performance and load testing
A-Ryan-Security/
βββ main.py # Application entry point
βββ config.py # Configuration management
βββ models.py # Database models and schemas
βββ requirements.txt # Python dependencies
βββ antivirus.py # Windows Defender integration
βββ firewall.py # Firewall management
βββ vuln_checker.py # OSV-Scanner integration
βββ network_analyzer.py # Network analysis & ML
βββ ai_integration.py # AI-powered analysis
βββ process_scanner.py # System process monitoring
βββ reports.py # PDF report generation
βββ services.py # Core business logic
βββ web_interface/ # Flask web application
β βββ app.py # Main Flask application
β βββ templates/ # HTML templates
β βββ static/ # CSS, JS, and assets
β βββ performance_optimizer.py
βββ tests/ # Comprehensive test suite
βββ db/ # Database files
- Flask-Caching: In-memory and Redis caching
- Query Optimization: Database query performance monitoring
- Background Tasks: APScheduler for non-blocking operations
- Real-time Updates: WebSocket for live data streaming
- Performance Metrics: Request timing and resource usage
- Error Tracking: Comprehensive error logging and reporting
- System Health: Real-time system status monitoring
- Audit Trails: Complete action and event logging
- HTTPS Only: SSL/TLS encryption required
- Environment Variables: No hardcoded secrets
- Firewall Configuration: Proper network security rules
- Regular Updates: Keep dependencies current
- Backup Strategy: Regular database and configuration backups
- OWASP Guidelines: Following security best practices
- Data Protection: Secure handling of sensitive information
- Access Controls: Principle of least privilege
- Audit Requirements: Comprehensive logging for compliance
- Permission Errors: Run as administrator
- Port Conflicts: Ensure port 5000 is available
- Database Issues: Check database file permissions
- AI Service Errors: Verify Ollama installation and model availability
Enable debug logging by setting:
export FLASK_ENV=development
export DEBUG=true- Follow PEP 8 coding standards
- Write comprehensive tests for new features
- Update documentation for any changes
- Use meaningful commit messages
- Ensure all tests pass before submitting
- Open issues for bug reports and feature requests
- Provide detailed descriptions and use cases
- Include relevant logs and error messages
This project is licensed under the MIT License. See the LICENSE file for details.
For technical support, feature requests, or bug reports:
- Check existing issues in the repository
- Review troubleshooting documentation
- Provide detailed system information and logs
- Include steps to reproduce any issues
A-Ryan-Security - Advanced Security Monitoring & Analysis Platform Built with Python, Flask, and modern security practices