ForenStory banner

ForenStory

Created by: dhritimoyd
1 devlog
0s

"ForenStory" is an explainable AI-powered cyber incident investigator that analyzes security logs and reconstructs attacks as clear, confidence-aware stories. Instead of raw alerts, it provides human-readable timelines, severity scores, and tailor…

“ForenStory” is an explainable AI-powered cyber incident investigator that analyzes security logs and reconstructs attacks as clear, confidence-aware stories. Instead of raw alerts, it provides human-readable timelines, severity scores, and tailored explanations for beginner to expert analysts, helping teams quickly understand what happened, why it happened, and how to respond.

dhritimoyd
dhritimoyd worked on ForenStory
about 2 months ago

The project was initiated by defining the core problem: security analysts often spend excessive time manually reading logs to understand incidents. To address this, ForenStory is being designed as an explainable AI-powered cyber incident investigator that converts raw security logs into structured attack timelines and human-readable explanations.

In this phase, the system architecture was planned with a clear separation between log parsing, detection logic, explainability, and AI-assisted analysis. The initial backend structure was set up using Python and FastAPI, and the first detection objective—brute-force login attempts—was defined with rule-based logic to ensure accuracy and transparency.

The focus of this stage was not AI automation, but building a reliable investigation foundation that can later be enhanced with AI for narrative generation, confidence scoring, and analyst-level explanations.

Attachment
Attachment
0