Multi-agent behavioural endpoint models for the detection of cyberattacks across the kill chain (NVISO)