The project aims to develop an NLP‑driven conversational interface that acts as a middleware between security analysts and ELK‑based SIEM platforms (Elastic SIEM / Wazuh). It will translate multi‑turn natural language queries into optimized Elasticsearch DSL/KQL, retrieve results, and present them as text, tables, or visual charts. Additionally, it will generate automated threat reports on demand, preserving context across interactions and providing clarification when ambiguities arise.
This is a Complete Project Template
Sign in to view the full implementation details, methodology, and resources.