Hybrid Vigor: Improving Detection by Combining ML with Extracted IOCs
The cybersecurity industry has realized the potential of machine learning to detect attacks, but black box models impede analysts from effectively responding to alerts. If an analyst cannot understand why a machine learning alert fired, then the alert is likely to be ignored.