Anirudh Shah, Laxmi Mujalde, Gayatri Dangi, Mr. Brajendra Prajapati, Rohit Kaurav, Aniraj Ghuraiya, Dr. Neha Sharma, Dr. Rachna Kulhare
Abstract
This comprehensive research document detailedly outlines the realization of an integrated, highly advanced, and lightweight consumer endpoint Défense ecosystem developed using optimized Python sub-routines. Traditional commercial antivirus frameworks continuously deplete computational performance metrics because of synchronous, massive file-indexing routines against heavy external signature definitions. This system bypasses those vulnerabilities by establishing continuous asynchronous monitoring handlers. The resulting multi-tiered framework deploys live filesystem hooks, runtime threat classification via custom heuristics, network raw socket filtration layers, and low-overhead automated quarantine zones. The application maintains full defense coverage while effectively minimizing physical CPU and RAM utilization constraints.
The Python-based Real-Time PC Protection suite delivers a highly efficient, modular framework designed to safeguard modern endpoint workstations against sophisticated exploits. By pairing lightweight, event-driven filesystem monitors with asynchronous behavioral validation tracking, the platform demonstrates that robust real-time endpoint security can be achieved with minimal system overhead using accessible open-source module.
References
1.“Endpoint Security,” Wikipedia Security Archive. Available: https://en.wikipedia.org/wiki/Endpoint_security
2.Python Software Foundation, “OS — Miscellaneous Operating System Interfaces,” Python Documentation. Available: https://docs.python.org/3/library/os.html
3.G. Rodola, “Psutil — Cross-platform Process and System Monitoring Library,” GitHub Repository. Available: https://github.com/giampaolo/psutil
4.Watchdog Project Maintainers, “Watchdog — Python API and Shell Utilities to Monitor File System Events,” GitHub Repository. Available: https://github.com/gorakhargosh/watchdog
5. M. Russinovich and D. Solomon, Windows Internals, 7th ed. Redmond, WA, USA: Microsoft Press, 2021.
6. W. Stallings, Network Security Essentials: Applications and Standards, 7th ed. Pearson Education, 2020.
7. B. Schneier, Applied Cryptography: Protocols, Algorithms, and Source Code in C, 2nd ed. New York, NY, USA: Wiley, 2015.
8.S. McCanne and V. Jacobson, “The BSD Packet Filter: A New Architecture for User-Level Packet Capture,” in Proc. USENIX Winter Conference, San Diego, CA, USA, 1993, pp. 259–269.
9.“Windows Filtering Platform,” Microsoft Learn. Available: https://learn.microsoft.com/en-us/windows/win32/fwp/windows-filtering-platform-start-page
10.“Linux Security Modules Usage,” Linux Kernel Documentation. Available: https://www.kernel.org/doc/html/latest/security/lsm.html
11.B. Caswell and J. Beale, Snort Intrusion Detection and Prevention Toolkit, 1st ed. Burlington, MA, USA: Syngress Publishing, 2007.
12.E. Skoudis and L. Zeltser, Malware: Fighting Malicious Code, Upper Saddle River, NJ, USA: Prentice Hall, 2004.
13.M. Sikorski and A. Honig, Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software, San Francisco, CA, USA: No Starch Press, 2012.
14. C. Sanders and J. Smith, Applied Network Security Monitoring: Collection, Detection, and Analysis, Burlington, MA, USA: Syngress, 2013.
15.NIST, “Guide to Malware Incident Prevention and Handling for Desktops and Laptops,” National Institute of Standards and Technology, Special Publication 800-83, 2013.
16.OWASP Foundation, “OWASP Top 10 Web Application Security Risks,” Available: https://owasp.org/www-project-top-ten/
17.Microsoft Corporation, “Windows Defender Antivirus Overview,” Microsoft Security Documentation. Available: https://learn.microsoft.com/en-us/microsoft-365/security/defender-endpoint/
18. Symantec Enterprise Division, “Endpoint Protection Architecture and Threat Prevention Techniques,” Broadcom Security Whitepaper, 2024.
19.Kaspersky Research Labs, “Modern Behavioral Malware Detection Systems,” Kaspersky Threat Research Publications, 2023.
20.Cisco Secure Labs, “Advanced Endpoint Threat Detection Using Behavioral Analytics,” Cisco Cybersecurity Reports, 2024.
21.S. Axelsson, “The Base-Rate Fallacy and Its Implications for the Difficulty of Intrusion Detection,” in Proc. ACM Conference on Computer and Communications Security, 1999, pp. 1–7.
22.R. Sommer and V. Paxson, “Outside the Closed World: On Using Machine Learning for Network Intrusion Detection,” in Proc. IEEE Symposium on Security and Privacy, 2010, pp. 305–316.
23. Elastic Security Research Team, “Endpoint Detection and Response (EDR) Techniques,” Elastic Documentation Portal. Available: https://www.elastic.co/security
24. MITRE Corporation, “MITRE ATT&CK Framework,” Available: https://attack.mitre.org/
25.VirusTotal Intelligence Platform, “Online Malware Analysis and Threat Intelligence Services,” Available: https://www.virustotal.com/
26. FireEye Research Labs, “Advanced Persistent Threat Monitoring and Incident Response,” FireEye Cybersecurity Publications, 2022.
27.CrowdStrike Holdings, “Cloud-Native Endpoint Protection and Threat Hunting,” CrowdStrike Security Whitepaper, 2024.
28. IBM Security, “Security Intelligence and Event Management for Enterprise Endpoint Systems,” IBM Documentation Library, 2023.
How to Cite This Paper
Anirudh Shah, Laxmi Mujalde, Gayatri Dangi, Mr. Brajendra Prajapati, Rohit Kaurav, Aniraj Ghuraiya, Dr. Neha Sharma, Dr. Rachna Kulhare (2026). REAL-TIME PC PROTECTION USING PYTHON. International Journal of Computer Techniques, 13(3). ISSN: 2394-2231.
