FlowTrix: Persistent Architecture for Proactive Monitoring and Vulnerability Detection in Local Networks
Keywords:
Network monitoring, endpoint security, Windows Service, C#/.NET, vulnerability detection.Abstract
Network security management in Local Area Networks (LANs) poses a significant challenge for educational institutions, where conventional auditing methods often suffer from visibility gaps during system startup. This paper introduces FlowTrix, a network monitoring platform based on a persistent architecture. The system integrates an agent developed as a Windows Service in C#/.NET 8, a PHP-based REST API backend utilizing a MariaDB/MySQL database, and a web-based control panel featuring dynamic host-based risk classification. The system was developed using a hybrid agile methodology and validated across 40 to 50 physical workstations running Windows 10 and Windows 11 at the Computing Laboratory of the Faculty of Informatics Mazatlán, Autonomous University of Sinaloa. Stress tests involving 100 simultaneous agents demonstrated a record integrity of 99.7%, a 95% accuracy rate in unauthorized port detection, and an agent CPU overhead of less than 3%. FlowTrix proves that endpoint auditing can be effectively automated through an accessible, robust, and low-cost architecture tailored for small-scale educational environments.
Downloads
References
Referencias
H. Dormann, Windows System Programming. Boston, MA, USA: Addison-Wesley Professional, 2018.
B. A. Forouzan, Transmisión de Datos y Redes de Computadores. Madrid, España: McGraw-Hill Education, 2010.
IEEE, "IEEE Standard for Local and Metropolitan Area Networks—Address Resolution Protocol (ARP) for IPv4," IEEE Computer Society, 2016.
Microsoft, "Building Background Services with .NET Core and .NET Framework," Microsoft Learn, 2023. [Online]. Available: https://learn.microsoft.com/en-us/dotnet/core/extensions/workers
M. Richards, Fundamentals of Software Architecture: An Engineering Approach. Sebastopol, CA, USA: O’Reilly Media, 2020.
K. Schwaber y J. Sutherland, La Guía Definitiva de Scrum: Las Reglas del Juego. Scrum.org, 2017.
B. Stroustrup, The C++ Programming Language, 4th ed. Upper Saddle River, NJ, USA: Addison-Wesley Professional, 2013.
A. Troelsen y P. Japikse, Pro C# 9 with .NET 5: Foundational Principles and Practices in Programming, 10th ed. New York, NY, USA: Apress, 2020.
H. Van Vliet, Software Engineering: Principles and Practice, 3rd ed. Hoboken, NJ, USA: Wiley, 2008.
W. J. Zehr, "Practical Port Scanning," presentado en Black Hat USA, Las Vegas, NV, USA, 2015.
R. Abu Bakar y B. Kijsirikul, "Enhancing Network Visibility and Security with Advanced Port Scanning Techniques," Sensors, vol. 23, no. 17, p. 7541, ago. 2023, doi: 10.3390/s23177541.
F. Yang et al., "PD-CPS: A Practical Scheme for Detecting Covert Port Scans in High-Speed Networks," Computer Networks, vol. 232, p. 109837, 2023, doi: 10.1016/j.comnet.2023.109837.
M. M. Pillai et al., "Machine Learning and Port Scans: A Systematic Review," arXiv:2301.13581, ene. 2023. [Online]. Available: https://arxiv.org/abs/2301.13581
K. Ono et al., "A Proposal of Port Scan Detection Method Based on Packet-In Messages in OpenFlow Networks and Its Evaluation," International Journal of Network Management, 2021, doi: 10.1002/nem.2174.
E. S. Sagatov, S. Mayhoub, A. M. Sukhov, F. Esposito y P. Calyam, "Proactive Detection for Countermeasures on Port Scanning Based Attacks," en Proc. 17th Int. Conf. Network and Service Management (CNSM), 2021, pp. 1-6. IEEE.
Z. S. Younus y M. Alanezi, "A Survey on Network Security Monitoring: Tools and Functionalities," Mustansiriyah Journal of Pure and Applied Sciences, vol. 1, no. 2, pp. 55-86, 2023.
M. H. Chung et al., "Enhancing Cybersecurity Situation Awareness Through Visualization: A USB Data Exfiltration Case Study," Heliyon, vol. 9, no. 1, p. e13025, ene. 2023, doi: 10.1016/j.heliyon.2023.e13025..
A. Chidukwani, P. Koutsakis y A. Veal, "A Survey on the Cyber Security of Small-to-Medium Businesses: Challenges, Research Focus and Recommendations," IEEE Access, vol. 10, pp. 85701-85719, 2022, doi: 10.1109/ACCESS.2022.3197899.
O. H. Abdulganiyu, T. Ait Tchakoucht y Y. K. Saheed, "A Systematic Literature Review for Network Intrusion Detection System (IDS)," International Journal of Information Security, vol. 22, no. 5, pp. 1125-1162, 2023, doi: 10.1007/s10207-023-00682-2.
N. Rawindaran, A. Jayal, E. Prakash y C. Hewage, "Cost Benefits of Using Machine Learning Features in NIDS for Cyber Security in UK Small Medium Enterprises (SME)," Future Internet, vol. 13, no. 8, p. 186, 2021, doi: 10.3390/fi13080186.
M. A. Ferrag, L. Maglaras, A. Ahmim, M. Derdour y H. Janicke, "RDTIDS: Rules and Decision Tree-Based Intrusion Detection System for Internet-of-Things Networks," Future Internet, vol. 12, no. 3, p. 44, 2020, doi: 10.3390/fi12030044.
S. Phanireddy, "Securing RESTful APIs in Microservices Architectures: A Comprehensive Threat Model and Mitigation Framework," International Journal of Emerging Research in Engineering and Technology, vol. 4, no. 2, pp. 64-73, 2023, doi: 10.63282/3050-922X.IJERET-V4I2P107.
R. Sun, Q. Wang y L. Guo, "Research Towards Key Issues of API Security," en Cyber Security, CNCERT 2021, Communications in Computer and Information Science, vol. 1506. Singapore: Springer, 2022, pp. 162-175, doi: 10.1007/978-981-16-9229-1_11.
A. Ehsan, M. A. M. Abuhaliqa, C. Catal y D. Mishra, "RESTful API Testing Methodologies: Rationale, Challenges, and Solution Directions," Applied Sciences, vol. 12, no. 9, p. 4369, 2022, doi: 10.3390/app12094369.
A. Chidukwani, P. Koutsakis y A. Veal, "Cybersecurity Preparedness of Small-to-Medium Businesses: A Western Australia Study with Broader Implications," Computers & Security, vol. 145, p. 103981, 2024, doi: 10.1016/j.cose.2024.103981.
Downloads
Published
Issue
Section
License
Copyright (c) 2026 International Journal of Information Science and Technological Applications-UAS IJISTA
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
