Knogin
[API-Domeinen]

Analysis

The Analysis module provides a comprehensive framework for executing complex analytical processing jobs within the Argus platform.

Modulemetadata

The Analysis module provides a comprehensive framework for executing complex analytical processing jobs within the Argus platform.

Terug naar Lijst

Bronverwijzing

content/modules/domain-analysis.md

Laatst bijgewerkt

5 feb 2026

Categorie

API-Domeinen

Inhoudschecksum

094739629dd0d377

Tags

api-domainsaireal-timecompliance

Gerenderde documentatie

Deze pagina rendert de Markdown en Mermaid van de module direct vanuit de publieke documentatiebron.

Overview#

The Analysis module provides a comprehensive framework for executing complex analytical processing jobs within the Argus platform. It orchestrates AI-powered analysis workflows including pattern detection, clustering, correlation analysis, summarization, anomaly detection, and hypothesis testing. The module also features advanced investigative capabilities such as counterfactual "Devil's Advocate" reasoning and risk-aware pathfinding through entity relationship graphs.

Key Features#

  • Multi-Method Analysis - Support for diverse analytical methodologies including summarization, pattern detection, clustering, correlation, anomaly detection, sentiment analysis, threat modeling, and graph analysis.
  • Asynchronous Job Processing - Long-running analysis tasks execute asynchronously with real-time progress tracking (0-100%), enabling analysts to monitor complex operations without blocking.
  • Granular Result Management - Each analysis job can produce multiple typed results (clusters, insights, anomalies, summaries, predictions, recommendations) with confidence scores for drill-down investigation.
  • Counterfactual Analysis - AI-powered "Devil's Advocate" hypothesis testing generates alternative scenarios that could invalidate investigative hypotheses, preventing confirmation bias and strengthening analytical rigor.
  • Risk-Aware Pathfinding - Discover investigation paths through entity relationship graphs with integrated risk and opportunity scoring, prioritizing paths that balance operational safety with evidence collection potential.
  • AI-Powered Narratives - Automatically generate human-readable narratives explaining the significance of discovered paths, highlighting risks, opportunities, and recommended approaches.
  • Organization-Scoped Security - All analysis operations enforce multi-tenant isolation, ensuring organizations can only access their own jobs and results.
  • Programmable API Access - Full API support for creating analysis jobs, updating progress, storing results, discovering investigation paths, and generating counterfactual scenarios.

Analysis Types#

  • Summarization - AI-powered evidence and investigation summarization for rapid situational awareness.
  • Pattern Detection - Behavioral pattern identification across transactions, communications, and entity interactions using algorithms such as HDBSCAN.
  • Clustering - Entity and event grouping to identify related items and network structures.
  • Correlation - Multi-source data correlation to uncover connected events across different data streams.
  • Anomaly Detection - Statistical outlier detection for fraud investigation, insider threat identification, and quality assurance.
  • Sentiment Analysis - Natural language processing for extracting sentiment from text evidence.
  • Threat Modeling - Threat actor behavior prediction and vulnerability assessment.
  • Graph Analysis - Network analysis and community detection across entity relationship graphs.

Use Cases#

  • Intelligence Analysis - Run multi-method analysis jobs on collected evidence to identify patterns, anomalies, and connections that human analysts might miss, with AI-generated insights and recommendations.
  • Hypothesis Testing - Before pursuing an investigative theory, use counterfactual analysis to stress-test hypotheses by generating alternative scenarios and identifying contradictory evidence.
  • Investigation Path Planning - Discover the most promising paths through complex entity networks, with risk and opportunity scores helping analysts prioritize leads that offer the best evidence collection potential.
  • Threat Assessment - Combine anomaly detection, correlation analysis, and threat modeling to build comprehensive threat assessments with confidence-scored predictions and actionable recommendations.

Integration#

The Analysis module integrates deeply with other Argus modules:

  • Analysis Jobs - The analysis jobs tracking system monitors and reports on all running analysis operations.
  • Entity Management - Graph-based pathfinding and network analysis operate on the entity knowledge graph.
  • Evidence Management - Analysis jobs reference evidence items and produce results that become part of the investigative record.
  • Case Management - Analysis results and counterfactual scenarios feed into case assessments and investigation planning.
  • AI Partners - AI-powered summarization, hypothesis testing, and narrative generation use the platform's AI provider infrastructure.
  • Audit Trail - All analysis operations are logged with user attribution for compliance and chain of custody.

Last Reviewed: 2026-02-05