This project is focused in developing new security capability at "device-level" (aka. endpoint) effective against malware targeting IoT devices, aiming to achieve defence in depth and deter adversaries to the connected devices. In particular, our solution - CyMonD improves current IoT security landscape by enhancing device-level protection against botnets targeting vulnerabilities in Linux system e.g. intrusive root access, abnormal system processes, malware injection etc. It utilizes secure communication, Linux system programming, machine learning and distributed communication technologies to achieve a robust solution for protection against malware targeting IoT devices. Consequently, CyMonD can protect against known and unknown attacks for connected IoT devices such as DDoS, ransomware and data breach etc.