The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven initiative providing a coordinated and systematic response to computer security threats and incidents.
👉 CIRCL AI Strategy
Vision
Our vision is to strengthen the capabilities of our Computer Security Incident Response Team (CSIRT) through the strategic integration of Artificial Intelligence.
AI is not intended to replace human analysts, but to augment their expertise, accelerate analysis, and improve decision-making.
Mission
Our mission is to leverage AI to:
- Process, analyze, and extract value from large and currently underutilized data sources
- Improve operational outcomes in threat intelligence and incident response
- Automate repetitive, well-defined, and reproducible processes, allowing analysts to focus on higher-value tasks
This work is grounded in CIRCL’s long-standing commitment to:
- Developing open-source tools
- Producing actionable threat intelligence
- Publishing high-quality datasets and models for both internal use and the wider security community
Publications
Bonhomme, C., & Dulaunoy, A. (2025).
VLAI: A RoBERTa-Based Model for Automated Vulnerability Severity Classification (Version 1.4.0) [Computer software].
https://arxiv.org/abs/2507.03607 https://huggingface.co/papers/2507.03607Bonhomme, C. (2025).
GPU Efficiency in VLAI Model Training.
https://doi.org/10.13140/RG.2.2.24233.04963
Projects
A modular MCP server providing AI-driven vulnerability management skills, including severity classification and automated insights.
Building AI-ready datasets and training models for vulnerability management.
An experimental agentic cybersecurity framework combining LLMs, domain-specific tools, and distributed agents over XMPP.
A FastAPI-based local inference server that loads one or more pre-trained NLP models at startup and exposes them through a clean, RESTful API.
👉 AI datasets and VLAI models related to the Vulnerability-Lookup project.