Skip to content
@ait-aecid

AECID

Automatic Event Correlation for Incident Detection

Pinned Loading

  1. logdata-anomaly-miner logdata-anomaly-miner Public

    This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitab…

    Python 90 24

  2. anomaly-detection-log-datasets anomaly-detection-log-datasets Public

    Analysis scripts for log data sets used in anomaly detection.

    Python 83 17

  3. kyoushi-environment kyoushi-environment Public

    Scripts to deploy virtual testbed for log data analysis and anomaly detection.

    Jinja 27 5

  4. aecid-alert-aggregation aecid-alert-aggregation Public

    A method for grouping, clustering, and merging semi-structured alerts

    Python 24 6

  5. alert-data-set alert-data-set Public

    Scripts to generate and analyze the AIT alert data set (AIT-ADS)

    Python 28 1

  6. caraxes caraxes Public

    Academic research rootkit using ftrace-hooking to hide files and processes via magic word or user/group. Tested until Linux 6.11.

    C 45 3

Repositories

Showing 10 of 39 repositories
  • logdata-anomaly-miner Public

    This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.

    ait-aecid/logdata-anomaly-miner’s past year of commit activity
    Python 90 GPL-3.0 24 13 3 Updated Jan 12, 2026
  • comparison-fed-centr-efficient-ad Public
    ait-aecid/comparison-fed-centr-efficient-ad’s past year of commit activity
    Python 1 GPL-3.0 0 0 0 Updated Dec 20, 2025
  • AlertBERT Public

    AlertBERT is a state-of-the-art self-supervised alert grouping method based on masked-language-models and agglomerative clustering to work under high levels of noise and simultaneous cyber attacks.

    ait-aecid/AlertBERT’s past year of commit activity
    Jupyter Notebook 1 GPL-3.0 0 0 0 Updated Dec 16, 2025
  • LLM-log-parsing Public
    ait-aecid/LLM-log-parsing’s past year of commit activity
    Python 9 1 0 0 Updated Dec 11, 2025
  • llm-alert-interpretation Public

    LLM-based alert interpretation

    ait-aecid/llm-alert-interpretation’s past year of commit activity
    Python 0 EUPL-1.2 0 0 0 Updated Nov 30, 2025
  • aminer-ansible Public

    Ansible-Role for the logdata-anomaly-miner

    ait-aecid/aminer-ansible’s past year of commit activity
    3 3 0 0 Updated Nov 24, 2025
  • aminer-rest Public

    REST-API for the logdata-anomaly-miner

    ait-aecid/aminer-rest’s past year of commit activity
    Python 1 GPL-3.0 3 1 0 Updated Nov 24, 2025
  • anomaly-detection-log-datasets Public

    Analysis scripts for log data sets used in anomaly detection.

    ait-aecid/anomaly-detection-log-datasets’s past year of commit activity
    Python 83 GPL-3.0 17 0 0 Updated Oct 19, 2025
  • log-gym Public

    Anomaly detection challenges for log data

    ait-aecid/log-gym’s past year of commit activity
    Jupyter Notebook 0 GPL-3.0 0 0 0 Updated Sep 25, 2025
  • rootkit-detection-ebpf-time-trace Public

    Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.

    ait-aecid/rootkit-detection-ebpf-time-trace’s past year of commit activity
    Python 28 GPL-3.0 3 0 0 Updated Sep 10, 2025
View all repositories