Vectra AI, founded in 2011, is an industry leader in cybersecurity and artificial intelligence. One of the many highlights of Vectra AI is that they successfully utilize artificial intelligence to detect complex cyberattacks before they occur. Additionally, they can do so without decrypting their client’s sensitive information. Vectra AI serves clients in 113 countries and is on the CRN Security 100, as well as the Forbes AI 50 List.

Vectra AI has a system that simulates cyberattacks before they occur. This state-of-the-art simulator replicates complex attacks when given valid parameters. However, Vectra AI needs to spend dozens of manhours to extrapolate data about new cyberattacks from online articles and reports to accomplish this.

To remedy this problem, advancements to Vectra AI’s system must be made. That is where our AI Cyberattack Early Warning System comes in. Utilizing large language models, we gather parameters from credible cyberattack reports, relevant threat intel resources, and other URLs gathered by trusted engineers.

With this data, the AI Cyberattack Early Warning System then runs simulations using Vectra AI’s C2 Simulator, as well as other common cyberattack tools. From there, this data is stored in Vectra’s database and is presented back to users in a user-friendly interface.

Our system predicts and identifies impending attacks before they happen, based solely on web traffic data. Vectra AI can then stop the attack before sensitive data is compromised.

The AI Cyberattack Early Warning System is a local web application that uses a Flask framework for the UI, Playwright as a webscraper to gather information from articles, Gemini as a large language model to extrapolate the configurations, and MySQL as the database where all valid new information is stored. Rubeus, and Mimikatz are used as additional cyberattack tools.