The Ransomware Detection System is a Python-based tool designed to monitor file system activities and detect potential ransomware threats in real-time. It leverages heuristic-based detection to identify suspicious file modifications and process activities. Additionally, it features an interactive GUI that alerts users and provides a protective mechanism against ransomware attacks.
✅ Real-Time File System Monitoring – Detects unusual file modifications
✅ Suspicious File Extension Detection – Identifies encrypted or renamed files
✅ Process Monitoring – Scans running processes for ransomware-like behavior
✅ Automated Threat Prevention – Terminates suspicious processes on detection
✅ GUI Alert System – Warns users when threats are detected
- Python 🐍
watchdog– For real-time file system monitoringpsutil– To analyze running processestkinter– For GUI alerts and notifications
- The script monitors directories for suspicious file modifications.
- It checks for suspicious extensions commonly used by ransomware.
- If detected, the system alerts the user via a GUI popup.
- The script also scans processes and automatically terminates potential ransomware threats.
# Clone the repository
git clone https://github.com/Mangesh-Bhattacharya/Ransomware-Detection-System.git
cd Ransomware-Detection-SystemThere are two ways to install the necessary dependencies: using pip or by using a requirements.txt file.
pip install watchdog psutil tkinter openpyxl- Make sure you have the
requirements.txtfile in the project directory (it should already be created in the repository). - Install all dependencies by running:
pip install -r requirements.txtpython main.pyThis tool is for educational purposes only. It is not a substitute for professional antivirus solutions. Always use additional cybersecurity measures to protect your data.