Mansour-Wajdi/Enhancing_Intrusion_Detection_with_SecurityOnion_using_ML
This project aims to enhance intrusion detection using Security Onion by integrating machine learning models for improved alert prioritization.
This project helps cybersecurity analysts reduce 'alert fatigue' by filtering out false alarms from their Security Onion intrusion detection system. It takes raw network alerts and packet capture (PCAP) files as input, processes them, and outputs prioritized alerts indicating true threats. Security operations center (SOC) analysts and incident responders are the primary users.
No commits in the last 6 months.
Use this if you are a security analyst overwhelmed by a high volume of false positive alerts from your Security Onion IDS and need to focus on genuine threats.
Not ideal if you are looking for a standalone intrusion detection system, as this project enhances an existing Security Onion deployment.
Stars
7
Forks
1
Language
Jupyter Notebook
License
—
Category
Last pushed
Sep 25, 2024
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/ml-frameworks/Mansour-Wajdi/Enhancing_Intrusion_Detection_with_SecurityOnion_using_ML"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
AIS-Package/aisp
Artificial Immune Systems Package (AISP) is an open-source Python library that features...
ubc-provenance/PIDSMaker
A framework for building provenance-based intrusion detection systems with neural networks
Western-OC2-Lab/Intrusion-Detection-System-Using-Machine-Learning
Code for IDS-ML: intrusion detection system development using machine learning algorithms...
zimingttkx/Network-Security-Based-On-ML
基于机器学习的网络安全检测系统 | 集成Kitsune/LUCID算法 | 支持ML/DL/RL模型 | 99.58%攻击检测准确率 | 19913 QPS | Docker/K8s部署
abhinav-bhardwaj/Network-Intrusion-Detection-Using-Machine-Learning
A Novel Statistical Analysis and Autoencoder Driven Intelligent Intrusion Detection Approach