← Back to Portal
05
Security & Governance Agents
Automated threat triage, MITRE ATT&CK classification, containment, and compliance sweeps
GuardDuty Security Hub CloudTrail EventBridge SSM Automation Macie Defender for Cloud Chronicle AI
1AWS🔍GuardDuty Findingthreat detection
2AWS📋Security Hubaggregated findings
3AWS🔒Macie PII Alertdata classification
ENRICHMENT
4AWSEventBridgeevent routing
5AWS📚CloudTrail Enrich50 events context
6🌐Threat IntelIP reputation
AI TRIAGE
7CORE🎯MITRE ATT&CKTTP classification
8AWS📝Narrative Genplain-English report
9🔴Severity Checkscore >= 7.0?
RESPONSE
10AWS🚫Auto-Containisolate + snapshot
11AWS🔑IAM Analyzerleast-privilege
12📢Alert Routingseverity-based
13AWS📊Compliance SweepSOC 2 daily check
Threat Triage
Auto-Containment
Compliance Path
Reporting
Click any node for details
AgentForge v1.0 · Architecture Diagram · Node 05 Return to Curriculum Portal