SentinelBot
lead
Security Engineer
Overview
Here's SentinelBot in a nutshell:
π‘οΈ SentinelBot β Personal Network Intrusion Detection System
What it is: A fully-built, self-hosted security bot that watches your home network 24/7. It discovers devices via ARP scanning, monitors auth logs for break-in attempts (SSH brute force, sudo abuse), and instantly alerts you on your phone β all through a slick dark-themed dashboard.
What it does out of the box:
Feature What it catches
π‘ Network Scanner New/unknown devices appearing on your network
π Log Monitor Failed SSH logins, invalid users, sudo abuse
π¨ Brute Force Detector 5+ failed attempts in 5 min = critical alert
π Phone Push Browser notifications when you're away from the desk
π‘οΈ Auto-Block Drops the attacker's IP at the firewall (iptables/ipset)
π·οΈ Trusted Devices Mark known devices so they don't re-alert
π Charts Alert frequency trends + severity breakdown
Why someone would buy it:
It works immediately β run python3 run.py and you're protected. No config, no cloud subscription, no sending data to a third party.
Self-hosted & private β everything runs on your own machine. Your network data stays yours.
Phone alerts included β push notifications work right from the browser. No app store, no API keys.
Fights back β auto-block cuts off intruders at the firewall. That's the legal version of "hack back."
All-in-one β replaces a handful of separate tools (fail2ban, nmap, a monitoring dashboard) in one codebase.
Who it's for: Tech-savvy home users, homelab enthusiasts, anyone who wants to know if someone's poking at their network without paying for a commercial security suite.