Automated Cybersecurity Risk Assessment for SMEs Using Machine Learning and Public Threat Intelligence

Authors

  • Nithilan Valan UG Scholar, Dept. of CSE, KPR Institute of Engg. & Tech., Coimbatore, Tamilnadu, India Author
  • Nisha Soms Associate Professor, Dept. of CSE, KPR Institute of Engg. & Tech., Coimbatore, Tamilnadu, India Author
  • Raghul K R UG Scholar, Dept. of CSE, KPR Institute of Engg. & Tech., Coimbatore, Tamilnadu, India Author
  • Dinesh K UG Scholar, Dept. of MECH, KPR Institute of Engg. & Tech., Coimbatore, Tamilnadu, India Author

DOI:

https://doi.org/10.47392/IRJAEH.2026.0089

Keywords:

Cybersecurity Risk Scoring, FastAPI, Flask, Flutter, Machine Learning, SMEs, Threat Intelligence, Vulnerability Assessment, XGBoost

Abstract

In the modern digital landscape, small and medium-sized enterprises (SMEs) face increasing cybersecurity risks due to limited financial resources, lack of dedicated security teams, and insufficient visibility into their threat exposure. This paper presents an intelligent and automated Cybersecurity Risk Scoring System designed to quantitatively assess the cybersecurity posture of SMEs based on their publicly accessible digital footprint. The proposed system integrates multiple threat intelligence sources, including VirusTotal, Shodan, Have I Been Pwned, and AbuseIPDB, through a unified backend API developed using Python-based Flask and FastAPI frameworks. Security-related features such as exposed network services, malware indicators, IP reputation, domain characteristics, and breach history are aggregated and analyzed using an XGBoost-based machine learning model to generate a normalized and interpretable risk score. A cross-platform Flutter-based mobile interface enables organizations to visualize domain health, vulnerability exposure, and network anomalies in real time. By automating data collection, analysis, and risk visualization, the proposed approach supports proactive cybersecurity risk management for SMEs while remaining cost-effective and scalable. The system aligns with established cybersecurity best practices and demonstrates the effectiveness of machine learning-driven risk assessment using publicly available threat intelligence data.

Downloads

Download data is not yet available.

Downloads

Published

2026-02-19

How to Cite

Automated Cybersecurity Risk Assessment for SMEs Using Machine Learning and Public Threat Intelligence. (2026). International Research Journal on Advanced Engineering Hub (IRJAEH), 4(02), 649-654. https://doi.org/10.47392/IRJAEH.2026.0089