CrowdStrike introduced Threat AI, the industry’s first agentic threat intelligence system designed to automate the most intricate and time-intensive intelligence workflows while accelerating actionable outcomes. As part of CrowdStrike’s newly launched Agentic Security Workforce, Threat AI equips security teams with mission-ready agents capable of reasoning across threat data, proactively hunting adversaries, and taking decisive action across the cyber kill chain. This allows defenders to focus on high-impact investigations while maintaining full operational control.
“Adversaries are weaponizing AI to accelerate every stage of attacks – what once took months can now happen in seconds, collapsing the defender’s window of response. Intelligence must evolve beyond informing defenders to actively countering threats at the speed of AI,” said Adam Meyers, head of Counter Adversary Operations at CrowdStrike. “Threat AI is the intelligence arm of CrowdStrike’s vision to equip every security analyst with mission-ready agents that eliminate high-friction tasks better suited for machines, ushering in a new era of threat intelligence.”
Threat AI: Intelligence in Action
CrowdStrike has long set the industry benchmark for adversary intelligence, tracking over 265 of the world’s most sophisticated nation-state, eCrime, and hacktivist groups. Integrated into CrowdStrike’s Threat Intelligence & Hunting modules and informed by years of hands-on experience from the Counter Adversary Operations (CAO) team, Threat AI automates complex workflows and delivers actionable recommendations precisely when analysts need them. By streamlining investigations and accelerating threat response, Threat AI ensures faster, more precise decision-making.
Also Read: CrowdStrike Launches Agentic Security Workforce for Ops
Initial Threat AI agents include:
-
Malware Analysis Agent: Automates one of the most time-consuming and complex analyst workflows: reversing, classifying, and comparing malware. In seconds, it analyzes files, identifies code similarities, provides instant attribution, and generates YARA rules, delivering actionable insights while scaling defenses across entire malware families.
-
Hunt Agent: Enables continuous, expert-level proactive threat hunting. The agent executes queries, scans for emerging threats, rapidly surfaces critical findings, and delivers clear, actionable insights and next-step recommendations.
Expanding the Threat Intelligence Agent Workforce
The Malware Analysis and Hunt Agent represent the first in a growing series of Threat AI agents, with additional agents for triage, correlation, and exposure mapping planned. Each agent is designed to complement the others, ensuring seamless orchestration and amplified intelligence outcomes.
Threat Intelligence Browser Extension
In addition, CrowdStrike is launching a new Chrome extension that brings its adversary intelligence directly into analysts’ browsers. This allows security professionals to access CrowdStrike intelligence while conducting external research, providing immediate investigative context and accelerating response times, all within a unified workflow.