# Anomaly detection methods {% hint style="info" %} *Sources & credit:* * [*What machine learning technique is usually used to solve anomaly detection? (Quora)*](https://www.quora.com/What-machine-learning-technique-is-usually-used-to-solve-anomaly-detection) * [*How to use machine learning for anomaly detection and condition monitoring (Vegard Flovik)*](https://towardsdatascience.com/how-to-use-machine-learning-for-anomaly-detection-and-condition-monitoring-6742f82900d7) * [*5 Ways to Detect Outliers/Anomalies That Every Data Scientist Should Know (Will Badr)*](https://towardsdatascience.com/5-ways-to-detect-outliers-that-every-data-scientist-should-know-python-code-70a54335a623) * [*A Brief Overview of Outlier Detection Techniques (Sergio Santoyo)*](https://towardsdatascience.com/a-brief-overview-of-outlier-detection-techniques-1e0b2c19e561) * [*Intuitively Understanding Variational Autoencoders (Irhum Shafkat)*](https://towardsdatascience.com/intuitively-understanding-variational-autoencoders-1bfe67eb5daf) * [*DBSCAN: What is it? When to use it? How to use it?*](https://medium.com/@elutins/dbscan-what-is-it-when-to-use-it-how-to-use-it-8bd506293818) * [*Best clustering algorithms for anomaly detection*](https://towardsdatascience.com/best-clustering-algorithms-for-anomaly-detection-d5b7412537c8) {% endhint %} Depending on the **presence or lack of labels**, there are two approaches to face yourself to an anomaly detection problem. ## As an unbalanced classification problem When we are given a set of observations with labels that indicate whether each point is an anomaly or not, this can be seen as a **binary classification problem**. So we can use any classifier we like. The only issue here is that **anomalies are by definition rare events**, so you’ll have to deal with class imbalance. {% content-ref url="how-to-deal-with-imbalanced-datasets" %} [how-to-deal-with-imbalanced-datasets](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/frequent-questions/how-to-deal-with-imbalanced-datasets) {% endcontent-ref %} ## As an unsupervised problem In this scenario, we are given a **set of points without class labels**. Some of them are anomalies and some aren’t, but you don’t know which is which. The goal here is to operationalize the intuitive idea that anomalies are different from the typical data point. {% content-ref url="../statistics/outliers" %} [outliers](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/statistics/outliers) {% endcontent-ref %} {% hint style="warning" %} Under construction {% endhint %} ### Basic methods #### Z-Score {% content-ref url="../statistics/z-score" %} [z-score](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/statistics/z-score) {% endcontent-ref %} #### IQR {% content-ref url="../statistics/iqr" %} [iqr](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/statistics/iqr) {% endcontent-ref %} ### Multivariate anomaly detection ### Clustering #### DBScan clustering {% content-ref url="../machine-learning-algorithms/unsupervised-learning/clustering/dbscan" %} [dbscan](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/machine-learning-algorithms/unsupervised-learning/clustering/dbscan) {% endcontent-ref %} #### Other clustering techniques These clustering techniques may be used to detect instances that are far away from clusters. {% content-ref url="../machine-learning-algorithms/unsupervised-learning/clustering/kmeans" %} [kmeans](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/machine-learning-algorithms/unsupervised-learning/clustering/kmeans) {% endcontent-ref %} {% content-ref url="../machine-learning-algorithms/unsupervised-learning/clustering/gaussian-mixture-model" %} [gaussian-mixture-model](https://jgoodman8.gitbook.io/iron-data-science-notebook/ml-datascience/machine-learning-algorithms/unsupervised-learning/clustering/gaussian-mixture-model) {% endcontent-ref %} ### Tree-based approach #### Isolation Forest It is an unsupervised learning algorithm that belongs to the **ensemble decision trees** family. It **explicitly isolates anomalies** instead of profiling and constructing normal points and regions **by assigning a score to each data point**. {% hint style="success" %} This algorithm **works great with very high dimensional datasets** and it proved to be a very effective way of detecting anomalies. {% endhint %} #### Robust Random Cut Forest (RCF) {% embed url="" %}