SENTRY-DOC: A Real-Time File Activity Monitoring and Machine Learning-Based Anomaly Detection Framework for Endpoint Security

Q: How many days will it take for my paper to be published?

The review time for papers is not fixed. However, if the paper is accepted and the author completes the processing charges formalities, the paper will be published within a few working days.

Q: I would like to receive a hard copy of the journal materials. Are there any additional charges?

You can log in to the author portal and pay 500 INR to receive the hard copy materials.

Q: Do IJIRT provide DOI for published papers?

Yes, we provide a DOI (Digital Object Identifier) upon request. Authors can contact us at editor@ijirt.org after publication to obtain the DOI for their paper.

Q: Do we provide Published Journal Print copy?

No, we do not provide Published Journal Print copy.

Q: Why am I not able to register to IPN?

There might be three potential reasons: 1) You did not verify your mobile number before clicking on the register button. Please click on the Verify sign immediately after entering your mobile number and complete OTP verification. 2) You are an international author. The IPN is enabled only for Indian Authors. 3) You did not tick the Terms & Conditions checkbox. Please make sure to select it before clicking on the register button.

Q: Where can I get a sample publication certificate?

Please login to Author Home, where you will find the sample copy of the publication certificate and confirmation letter.

Q: I made the processing charges payment and the amount is deducted from my bank account, but it is not updated in my Author Home. What should I do?

Please wait for one working day. We will check at our end and update the status. If it is still not updated after one working day, please email your Razorpay Payment ID along with the payment proof snapshot to editor@ijirt.org.

Q: Where can I sign the Copyright and Undertaking Declaration?

To publish your paper in IJIRT, copyright and undertaking is mandatory. You can digitally sign both by logging into Author Home and checking the right-side section.

Q: How many pages are allowed?

There is no page limit. However, to enhance quality and reader experience, we recommend keeping the paper up to 30 pages (single or double column) without extra charges.

Q: How many authors per paper are allowed?

Up to 13 authors are allowed without extra charges.

MADHAVA SAI PRAVEEN MANTINA; NAVEEN MANTRI; RAKESH NAIDU MEESALA; SAI KOWSHIK PUSARLA

SENTRY-DOC: A Real-Time File Activity Monitoring and Machine Learning-Based Anomaly Detection Framework for Endpoint Security

Authors: MADHAVA SAI PRAVEEN MANTINA, NAVEEN MANTRI, RAKESH NAIDU MEESALA, SAI KOWSHIK PUSARLA

Unique Paper ID: 196682
Volume: 12
Issue: 11
PageNo: 4631-4642

Keywords: File System Monitoring; Insider Threat Detection Anomaly Detection Endpoint Security Real-Time Security Monitoring Machine Learning–Based Threat Analysis Cybersecurity Analytics File Activity Tracking Risk Scoring System Security Event Monitoring.

Abstract:
With the rapid growth of digital systems and organizational data usage, protecting sensitive information from unauthorized access and malicious manipulation has become a critical challenge. Traditional security mechanisms primarily focus on network-level protection, while activities occurring within local file systems often remain insufficiently monitored. This limitation creates opportunities for insider threats, unauthorized file modifications, and data exfiltration that may go undetected for extended periods. To address this issue, this paper presents SENTRY-DOC, a real-time file activity monitoring and anomaly detection framework designed to enhance endpoint security through intelligent behavioral analysis. The proposed system continuously observes file system activities such as file creation, deletion, modification, and access events within monitored directories. These events are captured in real time and processed through a monitoring engine that records detailed activity logs. A machine learning–based anomaly detection component is then applied to analyze behavioral patterns and identify deviations from normal system activity. Anomaly detection techniques enable the system to automatically learn typical usage patterns and flag unusual behavior that may indicate potential security threats. In addition to anomaly detection, the framework incorporates a risk-scoring mechanism that categorizes detected events based on their potential threat level. Suspicious activities are instantly reported through a real-time dashboard that provides administrators with visual insights into system behavior, security alerts, and activity trends. Experimental observations demonstrate that the proposed framework can effectively identify abnormal file system behaviors while maintaining low system overhead. By combining continuous monitoring with machine learning–based analysis, SENTRY-DOC provides an intelligent and scalable approach for detecting insider threats and unauthorized file activities in endpoint environments.The proposed system contributes toward improving organizational data protection by providing a proactive monitoring mechanism capable of identifying suspicious behaviors before they escalate into significant security incidents.

Download article

email to a friend

Copyright & License

Copyright © 2026 Authors retain the copyright of this article. This article is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

BibTeX

@article{196682,
        author = {MADHAVA SAI PRAVEEN MANTINA and NAVEEN MANTRI and RAKESH NAIDU MEESALA and SAI KOWSHIK PUSARLA},
        title = {SENTRY-DOC: A Real-Time File Activity Monitoring and Machine Learning-Based Anomaly Detection Framework for Endpoint Security},
        journal = {International Journal of Innovative Research in Technology},
        year = {2026},
        volume = {12},
        number = {11},
        pages = {4631-4642},
        issn = {2349-6002},
        url = {https://ijirt.org/article?manuscript=196682},
        abstract = {With the rapid growth of digital systems and organizational data usage, protecting sensitive information from unauthorized access and malicious manipulation has become a critical challenge. Traditional security mechanisms primarily focus on network-level protection, while activities occurring within local file systems often remain insufficiently monitored. This limitation creates opportunities for insider threats, unauthorized file modifications, and data exfiltration that may go undetected for extended periods. To address this issue, this paper presents SENTRY-DOC, a real-time file activity monitoring and anomaly detection framework designed to enhance endpoint security through intelligent behavioral analysis.
The proposed system continuously observes file system activities such as file creation, deletion, modification, and access events within monitored directories. These events are captured in real time and processed through a monitoring engine that records detailed activity logs. A machine learning–based anomaly detection component is then applied to analyze behavioral patterns and identify deviations from normal system activity. Anomaly detection techniques enable the system to automatically learn typical usage patterns and flag unusual behavior that may indicate potential security threats. 
In addition to anomaly detection, the framework incorporates a risk-scoring mechanism that categorizes detected events based on their potential threat level. Suspicious activities are instantly reported through a real-time dashboard that provides administrators with visual insights into system behavior, security alerts, and activity trends. Experimental observations demonstrate that the proposed framework can effectively identify abnormal file system behaviors while maintaining low system overhead. By combining continuous monitoring with machine learning–based analysis, SENTRY-DOC provides an intelligent and scalable approach for detecting insider threats and unauthorized file activities in endpoint environments.The proposed system contributes toward improving organizational data protection by providing a proactive monitoring mechanism capable of identifying suspicious behaviors before they escalate into significant security incidents.},
        keywords = {File System Monitoring; Insider Threat Detection, Anomaly Detection, Endpoint Security, Real-Time Security Monitoring, Machine Learning–Based Threat Analysis, Cybersecurity Analytics, File Activity Tracking, Risk Scoring System, Security Event Monitoring.},
        month = {April},
        }

Download .bib

Cite This Article

MANTINA, M. S. P., & MANTRI, N., & MEESALA, R. N., & PUSARLA, S. K. (2026). SENTRY-DOC: A Real-Time File Activity Monitoring and Machine Learning-Based Anomaly Detection Framework for Endpoint Security. International Journal of Innovative Research in Technology (IJIRT), 12(11), 4631–4642.

Impact Factor
8.412 (Year 2026)

An UGC-Compliant International Research Journal

Join Our IPN

IJIRT Partner Network

Submit your research paper and those of your network (friends, colleagues, or peers) through your IPN account, and receive 800 INR for each paper that gets published.

Join Now