Why Choose Metaform.work
Abstract
This work presents an agent-based system designed to detect and manage Common Vulnerabilities and Exposures (CVEs) across infrastructure nodes.
ARTEMIS
an Automated Red Teaming Engine with Multi-agent Intelligent Supervision - A penetration testing agent.
Incalmo
An Autonomous LLM-assisted System for Red Teaming Multi-Host Networks. Incalmo is a system for executing multi-host red teams.
Multi-Agent Penetration Testing AI for the Web
We present MAPTA, a multi-agent system for autonomous web application security assessment that combines large language model orchestration with tool-grounded execution and end-to-end exploit validation.
Data Management Agent
The Data Management Agent is responsible for collecting, storing, and organizing security-related data from various sources such as logs, user activities, and system events. It ensures that accurate and structured data is available for analysis, enabling other agents to make informed security decisions.
Triage and
Investigation Agent
The Triage and Investigation Agent analyzes incoming alerts and determines their severity and relevance. It investigates suspicious activities, correlates data from multiple sources, and filters out false positives, allowing security teams and systems to focus on genuine threats.
Threat Hunt Agent
The Threat Hunt Agent proactively searches for hidden or unknown threats within the environment. Instead of relying solely on alerts, it continuously analyzes patterns, behaviors, and anomalies to detect advanced or stealthy attacks that may bypass traditional detection mechanisms.
Response Agent
The Response Agent is responsible for taking action against identified threats. It executes remediation steps such as blocking access, isolating affected systems, or triggering automated workflows to contain and mitigate security incidents in real time.
Detection Engineering Agent
The Detection Engineering Agent continuously improves the system’s ability to detect threats. It develops and refines detection rules, updates security logic, and adapts to new attack patterns, ensuring that the security system evolves alongside emerging threats.
API Security Testing Agent
API Security Testing Agent is essential for modern applications, as APIs are a key entry point for systems. It analyzes API endpoints to detect security weaknesses such as broken authentication, data exposure, and rate limiting issues. This helps prevent unauthorized access, protect sensitive data, and ensure system reliability.