๐Ÿ”ฎ Now Open Source on GitHub

ArgusWatch
AI-Agentic Threat Intelligence

39 real collectors. 7 autonomous AI agents. Every finding has a 3-link proof chain. Multi-tenant MSSP platform with D1-D5 exposure scoring. Zero fake data.

โšก Get Started โ€” FreeHow It Works โ†“
39
Collectors
7
AI Agents
3,476
Detections
183
MITRE Actors
89
Critical Finds
$0
To Deploy
ArgusWatch AI Dashboard โ€” Command Center showing real threat intelligence
ArgusWatch Command Center โ€” real threat data from 39 collectors
Core Capabilities
Real threat intel, not demo dashboards
Every IOC from real feeds. Every finding provable. Every score decomposed into five dimensions.
๐Ÿ“ก

39 Real Collectors

CISA KEV, NVD, MITRE ATT&CK, ThreatFox, Feodo, OpenPhish, RansomFeed, Shodan, VirusTotal, HIBP, and 29 more. 21 free.

๐Ÿค–

7 Autonomous AI Agents

Dark web triage every 30 min. Sector campaign detection every 6h. False positive memory. Severity assessment. Attribution reasoning.

๐Ÿ”—

3-Link Proof Chain

Every finding shows: what it affects (NVD CPE), how we know the customer uses it, how the correlation engine matched (S1-S8).

๐Ÿ“Š

D1-D5 Exposure Scoring

Actor Intent (35%), Target Profile (25%), Sector Risk (20%), Dark Web (10%), Surface Exposure (10%). CISOs see where to focus.

๐ŸŒ‘

Dark Web Intelligence

Ransomware leak monitoring, paste dump scanning, credential exposure. Clickable detail modals with AI triage and source verification.

๐Ÿข

Multi-Tenant MSSP

Customer isolation, tiered pricing, SLA tracking, 12-step auto-onboarding. One command deploys everything.

Evidence Trail

Every finding is provable

Click any finding โ€” see exactly where data came from and why it matters.

01

What does this IOC affect?

NVD CPE data โ€” vendor, product, version, CVSS score, CISA KEV exploitation status.

02

How do we know the customer uses it?

Discovery source + confidence score. Verify via Wappalyzer, Shodan, crt.sh, BuiltWith.

03

How the correlation engine matched

8 strategies (S1-S8): domain, subdomain, IP, email, tech/CPE, context, typosquat, token.

Intelligence Sources
39 collectors โ€” 21 free, 18 premium
Real feeds. No fake data. Free-tier keys available for most premium sources.
FREE โ€” NO API KEY
CISA KEVNVDMITRE ATT&CKThreatFoxFeodoOpenPhishURLhausPhishTankMalwareBazaarCIRCL MISPAbuse.chRansomFeedHudsonRockDarkSearchPaste SitesVX-UndergroundGrep.appGitHub GistSourcegraphTelegramPulsedive
PREMIUM โ€” API KEY
Architecture
30,000+ lines of production Python
โšก
FastAPI
90+ endpoints
๐Ÿ˜
PostgreSQL
+ Redis + Celery
๐Ÿณ
Docker Compose
10 services
๐Ÿฆ™
Qwen 2.5 14B
Local AI
Get Started
Deploy in 60 seconds

One command. 10 Docker services. Real threat intel in minutes.

# Clone and deploy
git clone https://github.com/3sk1nt4n/arguswatch-ai.git
cd arguswatch-ai
docker compose up -d --build

# Open dashboard
open http://localhost:7777 โšก View on GitHub

Built by a practitioner, for practitioners

GCFA ยท GCIH ยท GMON ยท GCTD ยท GDSA ยท GCIA ยท SANS Ambassador ยท 4 USPTO Patents

GitHub โ†’Contact Us โ†’