{"id":39286,"date":"2026-02-28T05:27:07","date_gmt":"2026-02-28T04:27:07","guid":{"rendered":"https:\/\/www.graviton.at\/letterswaplibrary\/ueba-user-and-entity-behavior-analytics\/"},"modified":"2026-02-28T05:27:07","modified_gmt":"2026-02-28T04:27:07","slug":"ueba-user-and-entity-behavior-analytics","status":"publish","type":"post","link":"https:\/\/www.graviton.at\/letterswaplibrary\/ueba-user-and-entity-behavior-analytics\/","title":{"rendered":"UEBA: User And Entity Behavior Analytics"},"content":{"rendered":"<p><!-- SC_OFF --><\/p>\n<div class=\"md\">\n<p>[SELF-PROMOTION]<br \/> Inspired by the chaotic currency exploits in <em>Rainbow Six Siege<\/em> in late 2025, this project explores <strong>User &amp; Entity Behavior Analytics (UEBA)<\/strong> to detect insider and outsider threats.<\/p>\n<p>Faced with the challenge of inaccessible real-world logs and complex datasets like CMU_CERT, I developed a simple, <strong>synthetic<\/strong> <strong>custom-built dataset<\/strong> designed to simulate realistic corporate environments. A key feature of this project is the inclusion of <strong>&#8220;gray area&#8221; activities<\/strong>\u2014actions that mimic malicious patterns but are actually benign\u2014to challenge the model&#8217;s accuracy and better reflect the nuance of real-world cybersecurity.<\/p>\n<ul>\n<li><strong>Origin:<\/strong> Sparked by the &#8220;total anarchy&#8221; of the 2025 R6 Siege security scandal.<\/li>\n<li><strong>The Problem:<\/strong> Existing datasets like CMU-CERT are often too complex for entry-level projects, while others are too simplistic to be useful.<\/li>\n<li><strong>The Solution:<\/strong> A synthesized dataset bridging the gap between theory and practice.<\/li>\n<li><strong>Technical Focus:<\/strong> Moving beyond &#8220;black and white&#8221; detection by incorporating deceptive gray-area data points.<\/li>\n<\/ul>\n<p>Access the dataset on (Kaggle.)[<a href=\"https:\/\/www.kaggle.com\/datasets\/prajwalnayakat\/ueba-insider-threat-and-attack-detection%5C\">https:\/\/www.kaggle.com\/datasets\/prajwalnayakat\/ueba-insider-threat-and-attack-detection<\/a>]<\/p>\n<p>Let me know if its a bit faulty in anyway.<\/p>\n<\/div>\n<p><!-- SC_ON -->   submitted by   <a href=\"https:\/\/www.reddit.com\/user\/Puzzleheaded_boi_63\"> \/u\/Puzzleheaded_boi_63 <\/a> <br \/> <span><a href=\"https:\/\/www.reddit.com\/r\/datasets\/comments\/1rgsmf2\/ueba_user_and_entity_behavior_analytics\/\">[link]<\/a><\/span>   <span><a href=\"https:\/\/www.reddit.com\/r\/datasets\/comments\/1rgsmf2\/ueba_user_and_entity_behavior_analytics\/\">[comments]<\/a><\/span><\/p><div class='watch-action'><div class='watch-position align-right'><div class='action-like'><a class='lbg-style1 like-39286 jlk' href='javascript:void(0)' data-task='like' data-post_id='39286' data-nonce='65e0e39b87' rel='nofollow'><img class='wti-pixel' src='https:\/\/www.graviton.at\/letterswaplibrary\/wp-content\/plugins\/wti-like-post\/images\/pixel.gif' title='Like' \/><span class='lc-39286 lc'>0<\/span><\/a><\/div><\/div> <div class='status-39286 status align-right'><\/div><\/div><div class='wti-clear'><\/div>","protected":false},"excerpt":{"rendered":"<p>[SELF-PROMOTION] Inspired by the chaotic currency exploits in Rainbow Six Siege in late 2025, this project explores&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[85],"tags":[],"class_list":["post-39286","post","type-post","status-publish","format-standard","hentry","category-datatards","wpcat-85-id"],"_links":{"self":[{"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/posts\/39286","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/comments?post=39286"}],"version-history":[{"count":0,"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/posts\/39286\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/media?parent=39286"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/categories?post=39286"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.graviton.at\/letterswaplibrary\/wp-json\/wp\/v2\/tags?post=39286"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}