This is an IDS for embedding systems like raspberry pi : blocking attacks with censoring networks with arp spoofing. We did a test drive in raspberry pi.
sources-used pkt-tools v1.6 http://kozos.jp/software/pkttools.html
System: ARP spoofing
|----------------|
| Raspberry pi |
|----------------|
|
|
|
|
|
|---------| send packets→ | |-----------| |hacker PC| ---------------------------------------------------------| target PC | |---------| |-----------|
Features : Cutting down ssh connections and https encrypted connections in order to find footprints of the hacker's computer
Warning: I can't take any responsibility if you used this IDS in cyber attacking. Don't use the pkt-change command! The IDS will ARP Storm and ICMP Strom your network!