I built a real-time network security dashboard that uses Next.js for the frontend and a Flask REST API for the backend. The system monitors network traffic, calculates data rates, and identifies anomalies using both Z-Score statistical analysis and Isolation Forest machine learning.

When a threat is detected—like a DDoS attack or data exfiltration—the system automatically enriches the data with process-level metadata (PIDs and process names) to pinpoint exactly which application is responsible. I designed it to filter for active connections, providing clear, actionable JSON reports for security analysis.