Capability
16 artifacts provide this capability.
Want a personalized recommendation?
Find the best match →via “threat actor and campaign attribution linking”
Production-grade MCP server giving Claude 27 security intelligence tools across 21 APIs — CVE lookup, EPSS scoring, CISA KEV, MITRE ATT&CK, Shodan, VirusTotal, and more.
Unique: Enables Claude to correlate vulnerabilities with specific threat actors and campaigns by linking MITRE ATT&CK, VirusTotal, and threat intelligence sources, transforming vulnerability data into adversary-centric threat profiles
vs others: Threat actor attribution provides context that vulnerability databases alone cannot offer; linking CVEs to known threat groups enables prioritization based on adversary sophistication and targeting patterns rather than generic severity metrics
via “threat actor technique association lookup”
Query and retrieve information about various adversarial tactics and techniques used in cyber attacks. Access a comprehensive knowledge base to enhance your understanding of security risks and adversary behaviors. Utilize the provided tools to efficiently explore ATT&CK techniques and tactics.
Unique: Exposes threat actor-technique associations as queryable MCP tools, allowing LLM agents to dynamically retrieve actor-specific TTPs during threat modeling or incident analysis without requiring separate threat intelligence platform integrations. Bridges threat actor profiles with ATT&CK techniques in a single query.
vs others: Provides actor-centric threat intelligence lookups within LLM workflows, whereas traditional threat intelligence platforms require separate API integrations and context management outside the agent reasoning loop.
via “real-time bad actor flagging”
Verifies AI agent wallets, domains and manifests before any transaction. Returns TRUSTED/UNVERIFIED/SUSPICIOUS/BLOCK with full signal breakdown. Connected to EMA shared brain - bad actors flagged here are blocked network-wide instantly.
Unique: Incorporates machine learning for pattern recognition in real-time, allowing for proactive blocking of bad actors based on historical behavior.
vs others: More efficient than static monitoring systems by adapting to new threats through continuous learning.
via “threat actor and campaign tracking”
via “attack-pattern-recognition”
via “advanced persistent threat detection”
via “threat context and attack pattern analysis”
via “continuous threat hunting and anomaly detection”
via “advanced threat detection and monitoring”
via “user-activity-pattern-monitoring”
via “behavioral anomaly detection and alerting”
via “threat landscape context integration”
via “behavioral-anomaly-analysis”
via “insider-threat-identification”
via “emerging threat pattern recognition”
Building an AI tool with “Threat Actor Activity Tracking”?
Submit your artifact →curl unfragile.ai/agents.md | sh© 2026 Unfragile. The platform for software for agents.