I am looking to develop a AI and machine learning Based Threat Detection platform. There are some solutions out there like darktrace, and mistnet.
This solution will include the following key features:
Listens traffic on a TAP/SPAN PORT
Real Time Threat Hunting and Monitoring
Generate Reports in PDF, XML, XLS
Intigration with Ticketing systems like Service Now, Jira
Active Directory Sync and LDAP