Network security linkage response combat map generation method, system and device and medium

The invention discloses a network security linkage response combat map generation method, system and device and a medium. The method comprises the following steps: constructing a topological graph containing network defense organization information according to a service system; collecting a network access event in a detection stage and mapping the network access event into a topological graph to form a network event graph; dividing the network event graph and generating a network event sub-graph sequence; inputting the network event sub-graph sequence into a pre-constructed classification model to classify the network event sub-graphs; generating a corresponding security policy and a traceability result according to the classification result of the network event sub-graph; generating a network security linkage response combat map according to the security policy and the traceability result; according to the method, the blocking strategy can be automatically generated when the security event in the network is