Skip to content
/ CyberVisionAI Public

Cyber Vision AI is a malware detection system for Android apps using a BERT-based model for classification and SHAP for explainability. It enhances app security by identifying malicious applications with high accuracy, providing transparency into model decisions. Built with Python, Pytorch,BERT

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

minhajputhiyara/CyberVisionAI

BranchesTags

Repository files navigation

Cyber Threat Analysis and Prevention System

Overview

This project aims to predict the techniques, tactics, and procedures (TTPs) of attackers by analyzing logs. Cyberattacks can be effectively analyzed and prevented using our automated and intelligent system, which understands the TTPs of cyber threats.

Key Features

  • Automated Threat Analysis: Predicts TTPs of attackers using advanced machine learning techniques.
  • Explainability: Utilizes SHAP (SHapley Additive exPlanations) for model prediction explainability.
  • Context Understanding: Employs BERT for better context understanding and classification.
  • Recommendations and Prevention: Leverages LLaMA LLM to provide recommendations and prevention methods, ensuring user safety from threats.

Technologies Used

  • SHAP: For explainability of model predictions.
  • BERT: For contextual understanding and classification.
  • LLaMA LLM: To generate recommendations and prevention strategies.
  • FastAPI: Backend framework for the application.
  • React: Frontend framework for the application.

Folder Structure

The project is organized into the following folders:

  1. tram: Contains the dataset and related files.
  2. crawler: Includes the crawler code for data collection and a notebook with the crawler implementation.
  3. model: Contains the model training notebook and the trained model.
  4. backend: FastAPI backend for the application.
  5. my_app: React frontend for the application.

How It Works

  1. Log Analysis: The system analyzes logs to identify potential cyber threats.
  2. TTP Prediction: Predicts the techniques, tactics, and procedures of attackers using a BERT-based model.
  3. Explainability: SHAP is used to explain the model's predictions, providing insights into the decision-making process.
  4. Recommendations: LLaMA LLM generates actionable recommendations and prevention methods to mitigate threats.

Screenshots

Screenshot 1

Screenshot 1

Screenshot 2

Screenshot 2

Screenshot 3

Screenshot 3

Screenshot 4

Screenshot 4

Getting Started

Prerequisites

  • Python 3.8+
  • Node.js (for React frontend)
  • FastAPI (for backend)
  • Required Python libraries (listed in requirements.txt)

Installation

  1. Clone the repository: 
    git clone <repository-url>
cd MINI_PROJECT
  2. Install dependencies: 
    pip install -r requirements.txt
  3. Start the backend: 
    cd backend
uvicorn main:app --reload
  4. Start the frontend: 
    cd my_app
npm install
npm start

Future Enhancements

  • Integration with real-time log monitoring systems.
  • Support for additional datasets and threat intelligence feeds.
  • Enhanced visualization of SHAP explanations.

Credits

This project was developed to provide an intelligent and automated solution for analyzing and preventing cyber threats.

About

Cyber Vision AI is a malware detection system for Android apps using a BERT-based model for classification and SHAP for explainability. It enhances app security by identifying malicious applications with high accuracy, providing transparency into model decisions. Built with Python, Pytorch,BERT

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages