jrk101/suspicious-login-detector

# Suspicious Login Detector A simple Python tool to scan system logs and detect IP addresses with multiple failed login attempts, simulating a basic Security Operations Center (SOC) task. ## What it does - Parses log files line by line - Extracts IP addresses from lines with "Failed login" - Counts failed login attempts - Flags IPs with 3 or more failed attempts ## How to run Ensure the system_logs.txt file is in the same folder Make sure you have Python installed, then: python flag_ip.py