The Internet of Things paradigm of communication is changing the internet world. IoT is introducing endless possibility of application. Smart cities, Industrial automation, Smart homes and Intelligent healthcare are just some examples of possible IoT applications. The IoT revolution brings also security concerns. In particular, the connection of constrained devices to the internet world produces new threats for human users safety and privacy, as well as to the secrecy of their data. In this scenario it is fundamental to develop reliable cybersecurity mechanisms to protect completely IoT. Moreover, subsets of IoT networks may introduce communication power constrains and lossy links. In these scenarios, additional considerations must be taken into account to secure communication between devices. The proposed work aims at securing RPL, the standardized routing protocol for IoT. We propose CSI, a novel Intrusion Detection System (IDS) that overcomes most of state-of-the-art IDSs' drawbacks. In particular, CSI introduces a novel sniffing approach to reach zero overhead, remove any computational issue and detect 14 different attacks against RPL. Moreover, CSI relies on the combination of anomaly-based detection and signature-based classification techniques. The two paradigms are combined in a two-stages system to perform reliable attack detection, while maintaining small false positives rate. To test CSI's performances we simulate 14 different classes of attacks using NetSim. Each attack is considered in different scenarios to test properly CSI's detection ability. Results show that CSI reliably detects these attacks, outperforming state-of-the-art IDSs. We study also the computational performances of the proposed system, showing its applicability to real world scenarios.