CyberShield AI: A Prototype Multi-Agent Framework for Simulated Cyber Threat Detection, LLM-Assisted Risk Analysis, and Explainable Automated Response Recommendations

Q: How many days will it take for my paper to be published?

The review time for papers is not fixed. However, if the paper is accepted and the author completes the processing charges formalities, the paper will be published within a few working days.

Q: I would like to receive a hard copy of the journal materials. Are there any additional charges?

You can log in to the author portal and pay 500 INR to receive the hard copy materials.

Q: Do IJIRT provide DOI for published papers?

Yes, we provide a DOI (Digital Object Identifier) upon request. Authors can contact us at editor@ijirt.org after publication to obtain the DOI for their paper.

Q: Do we provide Published Journal Print copy?

No, we do not provide Published Journal Print copy.

Q: Why am I not able to register to IPN?

There might be three potential reasons: 1) You did not verify your mobile number before clicking on the register button. Please click on the Verify sign immediately after entering your mobile number and complete OTP verification. 2) You are an international author. The IPN is enabled only for Indian Authors. 3) You did not tick the Terms & Conditions checkbox. Please make sure to select it before clicking on the register button.

Q: Where can I get a sample publication certificate?

Please login to Author Home, where you will find the sample copy of the publication certificate and confirmation letter.

Q: I made the processing charges payment and the amount is deducted from my bank account, but it is not updated in my Author Home. What should I do?

Please wait for one working day. We will check at our end and update the status. If it is still not updated after one working day, please email your Razorpay Payment ID along with the payment proof snapshot to editor@ijirt.org.

Q: Where can I sign the Copyright and Undertaking Declaration?

To publish your paper in IJIRT, copyright and undertaking is mandatory. You can digitally sign both by logging into Author Home and checking the right-side section.

Q: How many pages are allowed?

There is no page limit. However, to enhance quality and reader experience, we recommend keeping the paper up to 30 pages (single or double column) without extra charges.

Q: How many authors per paper are allowed?

Up to 13 authors are allowed without extra charges.

D.Satya Priya; Mr.J.Naresh Kumar; D.Shravani; N.Sri Laxmi; V.Sravani

CyberShield AI: A Prototype Multi-Agent Framework for Simulated Cyber Threat Detection, LLM-Assisted Risk Analysis, and Explainable Automated Response Recommendations

Authors: D.Satya Priya, Mr.J.Naresh Kumar, D.Shravani, N.Sri Laxmi, V.Sravani

Unique Paper ID: 195534
PageNo: 1215-1229

Keywords: Multi-Agent Systems Cybersecurity Prototype Anomaly Detection Large Language Models Explainable AI SHAP Response Recommendations Isolation Forest Random Forest Streamlit FastAPI Docker Synthetic Dataset Modular Pipeline.

Abstract:
This paper presents CyberShield AI, a prototype multi-agent cybersecurity monitoring framework constructed to investigate the feasibility of coordinating modular AI-based components for automated threat detection, risk analysis, and structured response recommendation within a simulated network environment. The system comprises five purpose-built agents — Hunter, Analyst, Responder, Reporter, and Watchdog — organized as a sequential processing pipeline that operates over synthetically generated network access log data. The prototype does not ingest live network streams, execute autonomous remediation actions, or operate against real-world infrastructure; all evaluations are conducted within a controlled simulation environment using a synthetic dataset produced by an integrated log generation module. In controlled experimental evaluation, the pipeline processed 1,526 synthetic log records in 2.1 seconds, identifying 458 anomalous entries at a mean detection confidence of 75%. The platform exposes a seven-section Streamlit dashboard providing simulated threat metrics, geographic origin visualization of synthetic attack sources, per-agent conversational interfaces, incident-level SHAP feature attribution, counterfactual scenario analysis, and configurable report generation. A FastAPI REST backend with full OpenAPI documentation and Docker Compose containerization supports repeatable deployment of the prototype. By integrating ensemble machine learning anomaly detection, optional GPT-4-assisted risk narration, structured response planning heuristics, and post- hoc model explainability within a single modular workflow, CyberShield AI demonstrates a defensible design architecture for future research toward operationally viable security automation tooling, while acknowledging the substantial gap between prototype demonstration and production-grade deployment.

Download article

email to a friend

Copyright & License

Copyright © 2026 Authors retain the copyright of this article. This article is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.

BibTeX

@article{195534,
        author = {D.Satya Priya and Mr.J.Naresh Kumar and D.Shravani and N.Sri Laxmi and V.Sravani},
        title = {CyberShield AI: A Prototype Multi-Agent Framework for Simulated Cyber Threat Detection, LLM-Assisted Risk Analysis, and Explainable Automated Response Recommendations},
        journal = {International Journal of Innovative Research in Technology},
        year = {2026},
        volume = {12},
        number = {11},
        pages = {1215-1229},
        issn = {2349-6002},
        url = {https://ijirt.org/article?manuscript=195534},
        abstract = {This paper presents CyberShield AI, a prototype multi-agent cybersecurity monitoring framework constructed to investigate the feasibility of coordinating modular AI-based components for automated threat detection, risk analysis, and structured response recommendation within a simulated network environment. The system comprises five purpose-built agents — Hunter, Analyst, Responder, Reporter, and Watchdog — organized as a sequential processing pipeline that operates over synthetically generated network access log data. The prototype does not ingest live network streams, execute autonomous remediation actions, or operate against real-world infrastructure; all evaluations are conducted within a controlled simulation environment using a synthetic dataset produced by an integrated log generation module.
In controlled experimental evaluation, the pipeline processed 1,526 synthetic log records in 2.1 seconds, identifying 458 anomalous entries at a mean detection confidence of 75%. The platform exposes a seven-section Streamlit dashboard providing simulated threat metrics, geographic origin visualization of synthetic attack sources, per-agent conversational interfaces, incident-level SHAP feature attribution, counterfactual scenario analysis, and configurable report generation. A FastAPI REST backend with full OpenAPI documentation and Docker Compose containerization supports repeatable deployment of the prototype. By integrating ensemble machine learning anomaly detection, optional GPT-4-assisted risk narration, structured response planning heuristics, and post- hoc model explainability within a single modular workflow, CyberShield AI demonstrates a defensible design architecture for future research toward operationally viable security automation tooling, while acknowledging the substantial gap between prototype demonstration and production-grade deployment.},
        keywords = {Multi-Agent Systems, Cybersecurity Prototype, Anomaly Detection, Large Language Models, Explainable AI, SHAP, Response Recommendations, Isolation Forest, Random Forest, Streamlit, FastAPI, Docker, Synthetic Dataset, Modular Pipeline.},
        month = {April},
        }

Download .bib

Cite This Article

Priya, D., & Kumar, M., & D.Shravani, , & Laxmi, N., & V.Sravani, (2026). CyberShield AI: A Prototype Multi-Agent Framework for Simulated Cyber Threat Detection, LLM-Assisted Risk Analysis, and Explainable Automated Response Recommendations. International Journal of Innovative Research in Technology (IJIRT), 12(11), 1215–1229.

01 Apr, 2026

Real-Time Construction Site Safety Monitoring

28 Mar, 2026

MedGPT: An Agentic Medical AI Assistant with Hybrid Retrieval, Chain-of-Thought Reasoning, and NLI-Based Citation Mapping for Medical Education

28 Mar, 2026

SPAMMER DETECTION AND FAKE USER IDENTIFICATION

28 Mar, 2026

Improving Bankruptcy Prediction Using Machine Learning

26 Mar, 2026

AI-POWERED LIVER CARE: A MACHINE LEARNING MODEL FOR HEPATITIS DIAGNOSIS

26 Mar, 2026

Interpretable Lightweight Model for Rice Leaf Disease Detection Using Knowledge Distillation

24 Mar, 2026

Iris Detection for Secure Voting System

23 Mar, 2026

ENHANCING TRUST IN ONLINE BROWSING ENVIRONMENTS

20 Mar, 2026

DEFENDERPEAS - Privilege Escalation Assessment and Safeguard Tool

Impact Factor
8.412 (Year 2026)

An UGC-Compliant International Research Journal

Join Our IPN

IJIRT Partner Network

Submit your research paper and those of your network (friends, colleagues, or peers) through your IPN account, and receive 800 INR for each paper that gets published.

Join Now