Can an AI system understand vulnerabilities, evaluate risk, and suggest mitigations — all without human help?
That’s what I set out to build with IntelPatch.
🔥 What is IntelPatch?
IntelPatch is a fully autonomous, multi-agent CVE intelligence system that parses real-world CVEs, simulates red-team reasoning, and generates human-grade vulnerability insights and patch recommendations.
It's built using CamelAI’s OWL framework, and can run completely offline via Ollama, making it ideal for secure environments.
🧠 What It Does
- 🧾 Scrapes and parses CVEs in real-time
- 🧠 Uses multiple reasoning agents to analyze severity and exploitability
- 🛠️ Suggests practical mitigations based on past exploits, configs, and patch databases
- 🔍 Scores risk based on CVSS, historical PoCs, and impact vectors
- 📦 All running fully locally with no internet dependency
⚙️ Tech Stack
- Languages: Python (agents, parsing), Shell (automation)
- LLM Integration: Ollama (offline LLM serving)
- Multi-Agent System: CamelAI OWL framework
- Data Sources: MITRE CVE feeds, ExploitDB, vendor advisories
- Design Pattern: Autonomous role-based agents with task delegation
🧩 How It Works
- CVE Ingestion Agent → pulls recent CVEs
- Parsing Agent → extracts vulnerability fields
- Exploit Risk Agent → analyzes threat level & known exploits
- Mitigation Agent → suggests fixes and patches
- Summarization Agent → generates human-readable report
Each agent operates independently, communicates via a shared memory channel, and reasons using OWL's role-based planner.
💡 Why I Built This
Manual CVE triage is:
- 🔁 Repetitive
- 🧍 Prone to error
- 🐢 Slow during active threat windows
IntelPatch acts as a virtual analyst, automating threat evaluation so defenders can respond faster and smarter.
🔗 Links
- 📦 GitHub: https://github.com/mrvenom17/intel-patch
- 📜 Full README: Includes architecture + agent breakdown
- 🌐 Portfolio: https://alay.vercel.app
📈 What’s Next?
- [ ] Add CVE → PoC → Patch mapping using ExploitDB
- [ ] Integrate a local vector DB for semantic similarity
- [ ] Add scoring dashboard with charts + risk heatmaps
- [ ] Add PoC testing in sandboxed environment
- [ ] Submit to CamelAI + OWL agent gallery
IntelPatch isn’t a script — it’s a thinking system.
Built solo. Fully open source. Always improving.
If you work in threat intel, cyber defense, or autonomous systems — I’d love your feedback or collab. Let’s build machines that defend like humans, but faster.
→ Drop a ⭐ on GitHub
→ Comment or share if this resonates
— Alay Sharma
Top comments (0)