of the security system to detect previously unknown attacks. • The efficiency depends on the datasets used to train the ML models. • The completeness and validity are questionable. Cyberattacks on software systems can lead to severe consequences, and therefore it is extremely important to detect them at early stages.