AI Threat Detection Engine

Overview

A self-learning microservice designed to detect zero-day threats using NLP and anomaly scoring. Built as a secure REST API for SIEM/SOC integration.

Stack Used

• Python
• FastAPI
• PostgreSQL
• HuggingFace
• Docker

Problem

Traditional intrusion detection systems struggled to keep up with zero-day and AI-powered attacks.

Approach

Developed a Python microservice with FastAPI and HuggingFace models for NLP-based anomaly detection. Containerized with Docker for easy deployment.

Results

Created an extensible, AI-driven threat engine that integrates with SOC pipelines, reducing detection time and providing proactive defense.