Abstract— AnInternal Intrusion Detection and Protection System by Using Data Mining andForensic Techniques (IIDPS) play a significant role in computer security.Currently, most computer systems use user IDs and passwords because the loginpatterns to verify users. However, many of users share their login patternswith co-workers and request these co-workers to help co-tasks, thereby creatingthe pattern which is the weakest points of computer security. Insiderattackers, the valid users of a system who attack the system internally, arehard to find since most intrusion detection systems and firewalls establish andisolate malicious behaviours launched from the external world of the systemsolely. with that to accurately find attacks. Therefore, in this project, asecurity system, named the Host Based Intrusion Detection System (HIDS), isprojected to find. Insider attacks at SC level by optimizing data processing andrhetorical techniques. The HIDS creates user’s personal profiles & log fileto stay track of user’s usage habits and determines whether or not a login useris that the account holder or not by scrutinizing his/her current system usagebehaviours with the patterns collected within the account holder’s personalprofile & log file. When intrusion is detected then image will be capturedby system and then will send it to administrator and then system willautomatically shut down as the intrusion is detected.
Keywords: Insiderattack, Log file, HIDS, IIDPS, System call, Digital forensic techniques.