Intellectual Property India Publishes Patent Application for 'Host-Based Intrusion Detection System For Real-Time Threat Detection' Filed by Dr. N. Thilgavathi; Mr. C. Balakrishnan; and S. A. Engineering College

MUMBAI, India, Jan. 2 -- Intellectual Property India has published a patent application (202541123381 A) filed by Dr. N. Thilgavathi; Mr. C. Balakrishnan; and S. A. Engineering College, Chennai, Tamil Nadu, on Dec. 8, 2025, for 'host-based intrusion detection system for real-time threat detection.'

Inventor(s) include Dr. N. Thilgavathi; and Mr. C. Balakrishnan.

The application for the patent was published on Jan. 2, under issue no. 01/2026.

According to the abstract released by the Intellectual Property India: "With the increasing digitalization of business processes, organizations face an escalating variety of cyber threats, including malware, unauthorized downloads, and process hijacking. While traditional security mechanisms such as firewalls and conventional antivirus tools provide preliminary protection, they often fall short against advanced, evolving, and zero-day attacks. This underscores the importance of robust Host-Based Intrusion Detection Systems (HIDS) as a proactive layer for real-time security monitoring. This project, titled "Host-Based Intrusion Detection System for Real-Time Threat Detection," focuses exclusively on host-level anomaly detection in Windows environments. The system leverages a custom-developed PowerShell script, orchestrated via Python, to systematically collect critical system data - including active processes, running services, suspicious downloads, and sensitive configuration files. Output from these scans is aggregated into CSV files for streamlined analysis. A novel aspect of the solution is its validation engine, which checks collected hash values against trusted threat intelligence sources, such as the VirusTotal API, to identify malicious artifacts. Users initiate scans by downloading and executing the script via a Next.js-based web interface, after which generated CSVs are uploaded back to the platform. Automated backend logic processes these uploads, performing hash value lookups and flagging any matches-increasing the speed and accuracy of threat identification. The system guides users through the scanning and uploading process with a clear frontend workflow, enabling non-technical stakeholders to easily participate in security operations. By centralizing host behavioral data and automating comparison with industry-leading threat databases, the solution provides a transparent, scalable, and highly extensible real-time defense mechanism against host-level attacks. Testing on various simulated threat scenarios demonstrates the system's effectiveness in rapidly identifying and reporting potential compromises, with seamless integration into modern IT workflows. Overall, this project delivers a practical and efficient host-based intrusion detection framework tailored for the immediate challenges of contemporary cybersecurity."

Disclaimer: Curated by HT Syndication.