Anomaly-based detection is a cybersecurity technique that identifies unusual patterns or behaviors in network traffic, system processes, or user activities to detect potential threats. It relies on establishing a baseline of normal operations and flags deviations from this baseline as potential security incidents, making it effective against unknown threats but susceptible to false positives.