Network Intrusion Detection ML Frameworks

Machine learning systems for detecting and preventing network-based cyberattacks through traffic analysis, anomaly detection, and packet inspection. Does NOT include general malware analysis, vulnerability scanning, or non-network security threats.

There are 85 network intrusion detection frameworks tracked. 3 score above 50 (established tier). The highest-rated is stratosphereips/StratosphereLinuxIPS at 65/100 with 862 stars. 1 of the top 10 are actively maintained.

Get all 85 projects as JSON

curl "https://pt-edge.onrender.com/api/v1/datasets/quality?domain=ml-frameworks&subcategory=network-intrusion-detection&limit=20"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

#	Framework	Score	Tier	Stars	Language
1	stratosphereips/StratosphereLinuxIPS Slips, a free software behavioral Python intrusion prevention system...	65	Established	862	Python
2	PowerLZY/Bold-Falcon 毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;	56	Established	160	Python
3	BBVA/waf-brain Machine Learning WAF Based	55	Established	96	Jupyter Notebook
4	hmishra2250/Botnet-Detection-using-Machine-Learning Repository of Bachelor's Major Project on Botnet Detection	49	Emerging	176	Jupyter Notebook
5	fabriziosalmi/nginx-waf-ai Automatically detect threats and deploy WAF rules using machine learning	44	Emerging	9	Python
6	jackaduma/ThreatReportExtractor Extracting Attack Behavior from Threat Reports	43	Emerging	81	Python
7	AbstractionsLab/idps-escape IDPS-ESCAPE (Intrusion Detection and Prevention System - Enhanced Security...	41	Emerging	14	Python
8	LiaoWenzhe/dataRisk-detection-resources 机器学习+大数据+数据安全：数据安全ai智能风险监测，风控，反欺诈,，api安全，web安全的学习资源，致力于打造智能数据安全领域领先的学习资料库，收集不...	41	Emerging	155	Python
9	forta-network/labelled-datasets Web3 threat related labelled datasets for data analysis and machine learning...	40	Emerging	49	—
10	dodo47/cyberML Machine learning on knowledge graphs for context-aware security monitoring...	38	Emerging	18	Jupyter Notebook
11	Shaik-Sohail-72/Network-Intrusion-Detection-Using-Deep-Learning Cyber Security: Development of Network Intrusion Detection System (NIDS), ...	36	Emerging	53	EJS
12	FA-PengFei/NGWAF First iteration of ML based Feedback WAF	36	Emerging	59	Jupyter Notebook
13	texasbe2trill/AlertSage An NLP system for classifying cybersecurity incident descriptions into...	35	Emerging	4	Jupyter Notebook
14	Piyush-2975/Advanced-WAF-WAFinity An Advanced Web Application Firewall that protects against threats like SQL...	35	Emerging	50	Python
15	pralab/modsec-learn Experiments for paper ModSec-Learn: Boosting ModSecurity with Machine Learning	34	Emerging	8	Python
16	onuion/onuion Open-source hybrid (rule-based + ML) security risk analysis system for...	33	Emerging	4	Python
17	hiyaamalik/Self-Healing-AI-for-Network-Security This is an artificial intelligence (ML and DL) project for network security...	32	Emerging	4	Jupyter Notebook
18	fouadtrad/Leveraging-Adversarial-Samples-for-Enhanced-Classification-of-Malicious-and-Evasive-PDF-Files Repository for the paper "Leveraging Adversarial Samples for Enhanced...	32	Emerging	6	Jupyter Notebook
19	akshanthsaik/AI-Driven-Web-Application-Firewall-WAF AI-powered Web Application Firewall utilizing a Random Forest model to block...	32	Emerging	2	HTML
20	DataTech-Solutions/Threat-Detection-and-Visualization Threat Detection and Visualization	32	Emerging	31	TSQL
21	keusuanl-sec/Advanced-Web-Application-Firewall An Advanced Web Application Firewall that protects against threats like SQL...	32	Emerging	26	HTML
22	sriram21-09/PhantomNet 🛡️ PhantomNet - AI-driven distributed honeypot deception framework for...	32	Emerging	2	Python
23	jackaduma/AI-WAF AI driven Web Application Firewall	32	Emerging	32	Python
24	lorenabez/DNS_Tunneling_Detection_on_AWS Describes an architecture for DNS Tunneling detection at AWS cloud using ELK.	31	Emerging	3	—
25	ramaritacreations/sql-injection-attack-detection 🔍 Detect SQL injection attacks with a machine learning system that uses...	31	Emerging	3	Python
26	pralab/modsec-advlearn Experiments for paper ModSec-AdvLearn: Countering Adversarial SQL Injections...	31	Emerging	9	Python
27	shubhammola/NIDS Cyber Security: Development of Network Intrusion Detection System (NIDS),...	29	Experimental	20	EJS
28	rhamenator/ai-scraping-defense-iis Not yet ready for release This project provides a multi-layered defense...	29	Experimental	1	C#
29	Pratham-verma/Web_Application_Firewall This project presents a powerful Web Application Firewall (WAF) designed to...	27	Experimental	7	Jupyter Notebook
30	tahaarshad/ThreatAI A cybersecurity solution that leverages the power of artificial intelligence...	27	Experimental	5	HTML
31	king1234567891/mephala 🕷️ Build an advanced honeypot system with Mephala, leveraging machine...	27	Experimental	1	Python
32	Aarnav-Singh/adversarial-ml-security-framework A learning-focused simulation of adversarial attacks against ML-based...	26	Experimental	2	Python
33	natanim-kemal/modintel A robust machine learning pipeline designed to augment ModSecurity's web...	26	Experimental	3	CSS
34	greenpdx/crmonban A security program uses nftables for monitoring, not logs so it can catch...	26	Experimental	3	Rust
35	RidiculousDoge/AIPDC An Artificial Intelligence Poisoned Data Detection & Cleanse System	26	Experimental	6	Python
36	SkySingh04/BharatVigil Context Aware Firewall	24	Experimental	2	Go
37	shifamaheen/NIDS Cyber Security: Development of Network Intrusion Detection System (NIDS),...	23	Experimental	4	EJS
38	denis989/internet-brownout AI-powered detection of partial internet shutdowns (brownouts) across 84...	22	Experimental	—	Python
39	brcew/AI-Intrusion-Response-System AI-Powered Autonomous Intrusion Response System — Real-time anomaly...	22	Experimental	1	Python
40	MayurS23/Cyberfluxmain AI-powered Intrusion Detection System using machine learning and deep...	22	Experimental	—	JavaScript
41	abdelfatah-chaib/Intrusion-Detection-System-MITM An AI-powered Intrusion Detection System (IDS) dashboard for IIoT networks....	22	Experimental	—	Jupyter Notebook
42	Tanvi-Badghare/distributed-dwaf-capstone-project A distributed WAF architecture combining ML-based threat detection,...	22	Experimental	—	Python
43	DataX-Soham/AI_CYBER_RISK_DETECTION AI system to detect cyber threats using ML (Regression + Classification)	22	Experimental	—	Python
44	blackXmask/X Hybrid web security platform using machine learning (XGBoost) and rule-based...	22	Experimental	—	Python
45	claws-lab/ban_evasion Data for the ACM WebConf 2022 paper, "Characterizing, Detecting, and...	22	Experimental	6	—
46	scorpionantimalware/scorpion-antimalware Scorpion Anti-malware official repository	21	Experimental	9	C++
47	aw-junaid/Machine-Learning-For-Security Explore ML for security: anomaly detection, malware classification, and...	21	Experimental	9	—
48	dasnija/aegis-omega-ids 🛡️ Enhance network security with AEGIS-Ω, a hybrid intrusion detection...	21	Experimental	—	Python
49	jayakrishnagaddam/AI-Powered-Intrusion-Detection-System-IDS This is a Cyber Security tool that uses artificial intelligence (AI) to...	20	Experimental	7	HTML
50	modintel/modintel A robust machine learning pipeline designed to augment ModSecurity's web...	20	Experimental	1	CSS
51	tworjaga/bluescope BlueScope: Bluetooth Monitoring & Security Platform. Professional PyQt6 GUI...	19	Experimental	—	Python
52	rydzze/CyberHolmes Final Year Project \| Cyber Threat Intelligence (CTI) Web-based Application	19	Experimental	1	TypeScript
53	LeoMartinezTAMUK/ML-Based_MTD M.T.D. is a project that tackles the growing risks faced by industries...	18	Experimental	2	Python
54	pushpraj-core/AI-Intrusion-Detection-System 🛡️ A Hybrid Intrusion Detection System (IDS) combining Deep Packet...	18	Experimental	2	Python
55	PeterHovng/HUTECH_DACN.CyberSecurity.AWS Đồ án chuyên ngành - ngành An ninh mạng "Hệ thống phát hiện tấn công mạng...	17	Experimental	—	Jupyter Notebook
56	abhik1029/SentinelAI-Real-Time-IDS-IPS Real-time AI-powered Intrusion Detection and Prevention System that monitors...	17	Experimental	—	TypeScript
57	fawwerty/CyberShield-AI-Cyber-Threat-Detection-System Real-time network intrusion detection using a 3-model ML ensemble(solation...	14	Experimental	—	JavaScript
58	ChristianTan00/KNN-SVM-GPS-Spoofing Source codes and datasets used for the undergraduate capstone project...	14	Experimental	15	Python
59	Estwarden/dataset Baltic security OSINT dataset — 27K signals from 20 sources, narrative tags,...	14	Experimental	—	—
60	Quixler/securing-mqtt 🔒 Secure MQTT communications by assessing vulnerabilities and implementing...	14	Experimental	—	Shell
61	mamadouwxxx/mbnsc 🔍 Detect and analyze malicious C2 communications with MBNSC, an advanced...	14	Experimental	—	Python
62	BLEGuard/supplement (MobiSys-24 Poster) BLEGuard: Hybrid Detection Mechanism for Spoofing...	14	Experimental	3	C
63	Arijit2175/AI-Driven-Cyber-Threat-Detector An AI based model for detecting cyber threats.	14	Experimental	1	Java
64	PadamLohchab/Ai-IDS- AI-based Intrusion Detection System with real-time traffic monitoring and...	14	Experimental	—	Python
65	Brindhaa3/Adversarial-Machine-Learning-for-Improving-Cybersecurity-Threats-Detection-Project-main Adversarial Machine Learning Cybersecurity Threat Detection using Flask,...	13	Experimental	—	HTML
66	temka095/OPNsense_Manager 🌐 Manage and monitor your OPNsense firewall easily with OPNsense_Manager,...	13	Experimental	—	—
67	shiva0126/soc-radware-dashboard Enterprise SOC Dashboard for Radware WAF - Real-time threat detection,...	13	Experimental	—	TypeScript
68	Projects-Developer/Full-Stack-Network-Intrusion-Detection-System-Using-Machine-Learning The project aims to design and develop a full-stack network intrusion...	13	Experimental	—	—
69	yassermessahli/sql-injection-detection RNNs for sql-injection detection 🔍. built in python with tensorflow and keras	13	Experimental	12	Jupyter Notebook
70	KaygusuzAbdal/predicting-cyber-incidents-with-AI By examining the cyber incidents between 2005 and 2020, we will be tried to...	12	Experimental	1	Jupyter Notebook
71	sidbav/689-discussions A website to share my learnings from Applying ML to CyberSecurity.	12	Experimental	1	JavaScript
72	Rbholika/TrustMyIDS-BERT-BERT-Based-Deep-Learning-Model-for-Network-Intrusion-Detection A BERT-based deep learning model for real-time network intrusion and...	11	Experimental	2	Jupyter Notebook
73	vis-05/netguard-ai A cybersecurity-focused machine learning project for detecting botnet...	11	Experimental	—	JavaScript
74	Prajjwal2051/Detection-of-APT-s-attack AI-based cybersecurity system that analyzes network data to detect anomalies...	11	Experimental	2	Shell
75	AyeshaBatool-02/gnss-shield-final Advanced GNSS spoofing detection system using deep learning (99.47%...	11	Experimental	—	JavaScript
76	yogaardiansyah/xssML XSS Attack Machine Learning detection	11	Experimental	4	HTML
77	PR-CYBR/asy1um Project Asylum is a self-adapting infrastructure management system using...	11	Experimental	—	Python
78	Bread2002/PYNQ_BLADEI Real-time bitstream malware detection using an ML model. Includes feature...	11	Experimental	2	Python
79	OTANK10/HardwareTrojan Inserting and Detecting Hardware Trojan on an Intel FPGA	11	Experimental	2	—
80	keerthi418/CYBER_COMMISION Cybercrime complaint and detection system using Flask and Machine Learning.	11	Experimental	—	HTML
81	krshydv/Threat-Detection-AI AI-based Cyber Threat Detection system using Machine Learning .	11	Experimental	—	HTML
82	wasimkhana/AIIntrusionDetector AIIntrusionDetector is a desktop application that analyze the network flow...	11	Experimental	4	—
83	Botxan/wmap Detection of Web Application Frameworks by Analyzing Responses to Malformed...	10	Experimental	2	Rust
84	ANSHAM1/SentinelAI_Nids a custom, ML/DL-powered network intrusion detection system	10	Experimental	1	Rust
85	ayu-yishu13/Astra_Gaurd This repository hosts ASTRAGUARD, an award-winning, IEEE-published Network...	10	Experimental	1	JavaScript

Comparisons in this category

waf-brain and NGWAF (55 vs 36) Advanced-WAF-WAFinity and AI-WAF (35 vs 32) Advanced-WAF-WAFinity and AI-Driven-Web-Application-Firewall-WAF (35 vs 32) AI-WAF and AI-Driven-Web-Application-Firewall-WAF (32 vs 32)