mouna23/AI-driven-MITRE-Attack
This repository demonstrates a machine learning pipeline for detecting MITRE ATT&CK techniques from logs and enriching the output using a local LLM.
This project helps cybersecurity professionals automatically identify potential attack techniques from system logs. It takes command-line log entries and classifies them against the MITRE ATT&CK framework. The output includes not just the attack technique but also an explanation, attacker intent, and recommended investigation steps, making it easier for security analysts to respond quickly.
Use this if you need to automate the initial detection and enrichment of MITRE ATT&CK techniques from your system logs.
Not ideal if you're looking for a cloud-based, fully managed security solution or if you don't have the technical expertise to set up local machine learning models and LLMs.
Stars
9
Forks
3
Language
Python
License
—
Category
Last pushed
Nov 18, 2025
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/ml-frameworks/mouna23/AI-driven-MITRE-Attack"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
nmap/nmap
Nmap - the Network Mapper. Github mirror of official SVN repository.
e-m-b-a/emba
EMBA - The firmware security analyzer
ait-testbed/attackbed
The AttackBed is a simulated enterprise network with numerous vulnerabilities. Attacks in this...
ritesh-gupta-git/AI-Powered-Vulnerability-Management
AI-VMF: AI-Powered Vulnerability Management Framework demo (ensemble exploit prediction + risk scoring)
scorpiondefense/cyberweapons
Automated Cyber Offense