Software pro inteligentní analýzu bezpečnostních událostí (iABU)
Title in English | Software for the intelligent analysis of security events (iABU) |
---|---|
Authors | |
Year of publication | 2019 |
MU Faculty or unit | |
web | https://github.com/CSIRT-MU/AIDA-Framework |
Description | Software for the intelligent analysis of security events (iABU), also known as AIDA framework, implements a set of algorithms for automated processing of security events in a collaborative environment, extracting information on cyber threats, and prediction of the next move of an adversary. The software processes intrusion detection alerts in IDEA format, such as the alerts shared within the SABU platform. The software checks the quality of the input data, extracts frequent attack patterns using data mining techniques, and predicts the next move of an adversary in time and space. The outputs of the software are predcited security events that can be used by mitigating connectors to perform mitigation of running cyber attacks and prevention of cyber threats. The software includes web user interface to support the analysis and present the results. |
Related projects: |