Abstract
The overwhelming threat may be a challenge to general security system. Fundamentally diverse alert and threat techniques are been researched in order to reduce deceptive warnings. Threat Detection Systems generates huge amount of alerts which becomes challenging to deal with them and prepare solution. The detection System checks inbound and outbound network activities and finds an suspicious pattern that indicate an ongoing steps for attack. Large amount of alert may contain false alarm therefore need of alert analysis mechanisms to offer high level information of seriousness of threat, how dangerous device are and which device admin has to pay more attention. To solve this query we would make use of time and space based alert analysis technique that provides a solution in form of attack graph and its evaluation that provides severity of attack to administrator.