With the increasing frequency and complexity of cyber threats, there is a pressing need for effective real-time solutions to detect and prevent malicious activities. This study introduces a novel machine learning-based architecture for real-time cybersecurity to enhance accurate identification and prevention of malicious cyber activities. The proposed framework combines advanced machine learning algorithms with Wireshark network traffic analysis to effectively detect and classify a wide range of cyberattacks, providing timely and actionable insights to cybersecurity professionals. A core component of this system is a prototype blocker, which is seamlessly integrated with Cisco infrastructure, enabling proactive intervention by blocking suspicious IP addresses in real-time. In addition, a user-friendly web application enhances system operability by offering intuitive data visualization and analytical tools, enabling rapid and informed decision-making. This comprehensive approach not only strengthens network security and protects digital assets but also equips defenders with the capability to respond effectively to the dynamic landscape of cyber threats.

Intrusion detection; Machine learning algorithms; Network forensics; Packet analysis; Real-time Protection