KNOWML: Improving Generalization of ML-NIDS with Attack Knowledge Graphs

This repository contains the code for our Euro S&P 2026 paper:

KNOWML: Improving Generalization of ML-NIDS with Attack Knowledge Graphs

Repository Structure

The repository is organized as follows:

Feature_extraction/ Contains the code for feature extraction.
KG_construction/ Contains the code for attack knowledge graph construction.

Dataset

The dataset used in this work is too large to be shared directly through this repository. We are currently figuring out the best way to make it available.

In the meantime, any questions can be sent to:

x.guo23@imperial.ac.uk

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
Feature_extraction		Feature_extraction
KG_construction		KG_construction
README.md		README.md
compare.ipynb		compare.ipynb

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

KNOWML: Improving Generalization of ML-NIDS with Attack Knowledge Graphs

Repository Structure

Dataset

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

KNOWML: Improving Generalization of ML-NIDS with Attack Knowledge Graphs

Repository Structure

Dataset

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages