In [None]:
# Install necessary libraries
# pip install scikit-learn joblib

from sklearn.feature_extraction.text import CountVectorizer
from sklearn.naive_bayes import MultinomialNB
import joblib

# Example training data (Alert text and its corresponding category)
train_data = [
    ("Suspicious login attempt from foreign IP", "Phishing"),
    ("Denial of service attack detected on the network", "DDoS"),
    ("Malware detected on endpoint device", "Malware"),
    ("Critical vulnerability in web application exposed", "Vulnerability"),
]

# Split data into alerts and labels
alerts, labels = zip(*train_data)

# Vectorizing the text
vectorizer = CountVectorizer()
X_train = vectorizer.fit_transform(alerts)

# Train a Naive Bayes classifier
model = MultinomialNB()
model.fit(X_train, labels)

# Save the model and vectorizer for future use
joblib.dump(model, 'alert_classifier_model.pkl')
joblib.dump(vectorizer, 'alert_vectorizer.pkl')

# Function to categorize new alerts
def categorize_alert(alert: str) -> str:
    """
    Categorizes a security alert based on its content.
    """
    vectorizer = joblib.load('alert_vectorizer.pkl')
    model = joblib.load('alert_classifier_model.pkl')

    # Preprocess and vectorize the input alert
    alert_vector = vectorizer.transform([alert])
    
    # Predict the category
    prediction = model.predict(alert_vector)
    
    return prediction[0]

# Example usage
alert_text = "Suspicious login attempt from foreign IP"
category = categorize_alert(alert_text)
print(f"Alert Category: {category}")