🛡️ CyberGuardian-X - Unified Security & Threat Intelligence Suite

Professional-grade cybersecurity tool that combines threat intelligence, real-time monitoring, and forensic analysis in one unified platform.

---

🚀 Features

🔍 Threat Intelligence Pro

• Multi-Source Analysis: 7 integrated threat intelligence APIs
• Domain/IP/File Scanning: Comprehensive threat assessment
• Real-Time Scoring: Advanced multi-source threat scoring system
• Export Capabilities: PDF/JSON report generation

🛡️ Real-Time Protection

• File Monitoring: Automatic scanning of new files
• Auto-Quarantine: Isolate malicious files automatically
• Watchdog Integration: Real-time directory monitoring

📊 Security Modules

• Personal Security: Breach monitoring & password analysis
• System Audit: Startup programs & process inspection
• Forensics Lite: Evidence collection & browser history
• Network Tools: Host discovery & port scanning

---

🏗️ Architecture

CyberGuardian-X/ ├── apis/ # Threat Intelligence API Clients ├── core/ # Core Engine & Utilities ├── gui/ # PyQt6 User Interface ├── modules/ # Security Modules ├── database/ # SQLite Data Storage └── assets/ # Icons & Resources

text

---

🔧 Installation

Option 1: Download Executable (Recommended)

1. Go to Releases
2. Download CyberGuardian-X.exe
3. Run directly - no installation required

Option 2: Build from Source

# Clone repository
git clone https://github.com/APMarzuki/CyberGuardian-X.git
cd CyberGuardian-X

# Create virtual environment
python -m venv .venv
.venv\Scripts\activate  # Windows
# source .venv/bin/activate  # Linux/Mac

# Install dependencies
pip install -r requirements.txt

# Run application
python app.py
⚙️ Configuration
Copy configuration template:

bash
cp keys.example.ini config.ini
Add your API keys to config.ini:

ini
[API_KEYS]
VIRUSTOTAL_API_KEY = your_virustotal_key_here
OTX_API_KEY = your_otx_key_here
ABUSEIPDB_API_KEY = your_abuseipdb_key_here
SHODAN_API_KEY = your_shodan_key_here
URLSCAN_API_KEY = your_urlscan_key_here
HYBRIDANALYSIS_API_KEY = your_hybrid_analysis_key_here
METADEFENDER_API_KEY = your_metadefender_key_here
Get FREE API Keys:

VirusTotal - 500 requests/day

AbuseIPDB - 1,000 requests/day

OTX AlienVault - Unlimited

Shodan - Limited results

URLScan - Free tier available

Hybrid Analysis - Free account

MetaDefender - Free tier

🎯 Usage
GUI Application
bash
# Launch the application
python app.py
# or
CyberGuardian-X.exe
Command Line Interface
bash
# Scan a domain
python -m cli.cli scan-domain example.com

# Scan an IP address
python -m cli.cli scan-ip 8.8.8.8

# Scan a file
python -m cli.cli scan-file suspicious_file.exe
Real-Time Monitoring
Enable in Settings → Real-Time Monitoring

Monitors Downloads and Desktop by default

Automatically scans new files

Quarantines high-threat files

🔍 Supported Threat Intelligence APIs
Service	Type	Free Tier
VirusTotal	File/Domain/IP Reputation	500 req/day
OTX AlienVault	Threat Intelligence	Unlimited
AbuseIPDB	IP Reputation	1,000 req/day
Shodan	Internet Intelligence	Limited
URLScan	Website Analysis	Free tier
Hybrid Analysis	Malware Analysis	Free account
MetaDefender	Multi-Antivirus	Free tier
🛡️ Security Features
API Key Protection: Never committed to repository

Local Cache: Reduces API calls and improves performance

Rate Limiting: Respects API limits automatically

Quarantine System: Isolates malicious files securely

Encrypted Config: Optional configuration encryption

📊 Screenshots
Threat Intelligence Dashboard
Real-Time Monitoring Settings
Scan Results with Threat Scoring

🏗️ Development
Project Structure
text
CyberGuardian-X/
├── apis/              # API clients (VT, OTX, AbuseIPDB, etc.)
├── core/              # Core functionality
│   ├── config_manager.py
│   ├── threat_score.py
│   ├── watchdog_monitor.py
│   └── logger.py
├── modules/           # Security modules
│   ├── threat_intel/  # Threat intelligence
│   ├── forensic_lite/ # Forensics tools
│   ├── net_scanner/   # Network scanning
│   └── system_audit/  # System analysis
├── gui/               # PyQt6 interface
├── database/          # SQLite storage
└── assets/            # Resources
Building from Source
bash
# Install dependencies
pip install -r requirements.txt

# Build executable
pyinstaller --name CyberGuardian-X --windowed --onefile --icon=assets/logo.ico app.py
🤝 Contributing
Fork the repository

Create a feature branch (git checkout -b feature/amazing-feature)

Commit your changes (git commit -m 'Add amazing feature')

Push to the branch (git push origin feature/amazing-feature)

Open a Pull Request

📝 License
This project is licensed under the MIT License - see the LICENSE file for details.

⚠️ Disclaimer
This tool is for educational and legitimate security purposes only. Users are responsible for complying with all applicable laws and API terms of service. The developers are not responsible for any misuse or damage caused by this program.

🏆 Achievements
✅ 7 Integrated Threat Intelligence APIs

✅ Real-Time File Monitoring

✅ Professional GUI Interface

✅ Standalone Executable

✅ Multi-Source Threat Scoring

✅ Automated Quarantine System

📞 Support
Issues: GitHub Issues

Discussions: GitHub Discussions

CyberGuardian-X - Your unified shield against cyber threats! 🛡️

text

### **3. Create requirements.txt** (if not exists)
```txt
PyQt6>=6.3
requests>=2.28
dnspython>=2.3
python-whois>=0.9
cryptography>=41.0
psutil>=5.9
rich>=12.6
tldextract>=3.4
pyinstaller>=5.10
python-magic-bin; sys_platform == "win32"
pillow>=10.0
watchdog>=3.0.0

## 🧪 Testing

### Validation Suite
Run these tests to verify your installation:

```bash
# Comprehensive security validation
python security_test.py

# Malware detection test (EICAR)
python eicar_test.py

# Functionality checklist
python functionality_checklist.py

Test Results
✅ 7/7 API integrations operational

✅ EICAR malware detection working

✅ Real-time monitoring active

✅ Production ready status

text

### 3. **Release Notes Update**
```markdown
## 🚀 Latest Update
- Added comprehensive test suite
- Validated all security features
- Confirmed production readiness
- Enhanced documentation