Hugging Face's logo

xpertsystems
/
cyb006-baseline-classifier

Tabular Classification
PyTorch
cybersecurity
identity-security
insider-threat
ueba
user-risk-scoring
synthetic-data
xgboost
baseline
leakage-diagnostic
Eval Results (legacy)
Model card Files
xet
 Community
cyb006-baseline-classifier
File size: 2,424 Bytes
e6a6835
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
{
  "feature_names": [
    "total_login_attempts",
    "successful_logins",
    "failed_logins",
    "mfa_failures",
    "impossible_travel_events",
    "lateral_hop_count",
    "privilege_escalations",
    "account_lockout_count",
    "geo_dispersion_score",
    "login_velocity_score",
    "session_anomaly_rate",
    "ueba_alert_count",
    "overall_identity_risk_score",
    "insider_threat_indicator_score",
    "avg_session_duration_seconds",
    "avg_mfa_response_latency_ms",
    "avg_geo_anomaly_score",
    "max_geo_anomaly_score",
    "frac_impossible_travel",
    "n_unique_countries",
    "n_unique_devices",
    "n_unique_applications",
    "failed_login_rate",
    "mfa_failure_rate",
    "ueba_alerts_per_session",
    "hops_per_escalation",
    "geo_velocity_composite",
    "composite_anomaly_score",
    "peak_privilege_level_accessed_admin_domain",
    "peak_privilege_level_accessed_admin_local",
    "peak_privilege_level_accessed_global_admin",
    "peak_privilege_level_accessed_power_user",
    "peak_privilege_level_accessed_service_account",
    "peak_privilege_level_accessed_standard_user"
  ],
  "numeric_features": [
    "total_login_attempts",
    "successful_logins",
    "failed_logins",
    "mfa_failures",
    "impossible_travel_events",
    "lateral_hop_count",
    "privilege_escalations",
    "account_lockout_count",
    "geo_dispersion_score",
    "login_velocity_score",
    "session_anomaly_rate",
    "ueba_alert_count",
    "overall_identity_risk_score",
    "insider_threat_indicator_score",
    "avg_session_duration_seconds",
    "avg_mfa_response_latency_ms",
    "avg_geo_anomaly_score",
    "max_geo_anomaly_score",
    "frac_impossible_travel",
    "n_unique_countries",
    "n_unique_devices",
    "n_unique_applications",
    "failed_login_rate",
    "mfa_failure_rate",
    "ueba_alerts_per_session",
    "hops_per_escalation",
    "geo_velocity_composite",
    "composite_anomaly_score"
  ],
  "categorical_levels": {
    "peak_privilege_level_accessed": [
      "admin_domain",
      "admin_local",
      "global_admin",
      "power_user",
      "service_account",
      "standard_user"
    ]
  },
  "label_to_int": {
    "low": 0,
    "medium": 1,
    "high": 2
  },
  "int_to_label": {
    "0": "low",
    "1": "medium",
    "2": "high"
  },
  "user_leaky_excluded": [
    "threat_actor_flag",
    "account_takeover_flag",
    "credential_attack_victim_flag"
  ]
}