at least one non-transitory storage device; and

at least one processor coupled to the at least one non-transitory storage device, wherein the at least one processor is configured to:

receive, via a network and from a network sensing module, packet header information corresponding to a record associated with a first data transfer between a first computing device and a second computing device;

analyze, the record to identify the first data transfer as unidirectional or bidirectional;

generate, based on a validation of the record, a first data transfer record for storage in a network directionality data store, wherein the first data transfer record is representative of the first data transfer from the first computing device to the second computing device, and wherein the first data transfer record is segmented into a plurality of time segments based on at least one user defined interval;

generate, by a directionality map generator with a first configuration and based on the network directionality data store at a first time segment and a second time segment, a first directionality map corresponding to the first time segment and a second directionality map corresponding to the second time segment, the first and second directionality maps comprising a graphical representation of a data transfer relationship between the first computing device and the second computing device, wherein edge length of the directionality map correspond to a volume of data of the first data transfer;

determine, using a Leiden algorithm, at least one community for each of the first and second directionality maps;

cause to be displayed, at a user interface of an endpoint device, at least one of the first and second directionality maps; and

determine, via a machine learning process of a community detection module, a functional group indicator corresponding to each of the at least one community, the functional group indicator corresponding to a label associated with computing devices in each of the at least one community.