Proactive security with Dropzone AI's Threat Hunter

Dropzone AI has introduced the AI Threat Hunter, a tool designed to support proactive security threat management. Expected to be available from Summer 2026, this AI agent aims to enable continuous threat hunting, seeking to help security teams enhance surveillance without diverting human resources from strategic tasks.

Security operations have long faced challenges in conducting comprehensive threat hunting. Limited time and expertise often meant centres focused more on responding to alerts than on proactive efforts. With most operations only occasionally performing threat hunts, some potential threats may have gone undetected.

The AI Threat Hunter aims to address this by automating threat hunting and providing 24/7 oversight. It seeks to reduce the workload on human analysts, allowing them to concentrate on higher-value tasks while maintaining consistent monitoring.

• Effortless Autonomous Hunting: The agent can utilise over 250 pre-built hunt packs or follow custom objectives, performing federated searches that aim to provide regular insights.
• Comprehensive AI-Driven Analysis: By analysing extensive datasets, it seeks to filter telemetry to identify anomalies that may require further investigation.
• Prompt Investigation Measures: Operating through security tools, the AI aims to investigate issues independently and generate detailed documentation.
• Inclusive Threat Coverage: Compatible with platforms such as Microsoft Sentinel and Splunk ES, the agent applies hunt definitions without needing query modifications, covering multiple environments.
• Enhanced Security Posture Insights: Beyond detecting threats, the AI seeks to highlight opportunities for improving security processes, even when immediate threats are absent.

Designed to work alongside Dropzone AI’s other agents, the Threat Hunter aims to support security operations during off-periods, such as weekends or holidays. Emerging threats identified by the AI Threat Intel Analyst can be addressed promptly, seeking to help ensure timely risk management.

The AI Threat Hunter aims to provide a solution for organisations with limited resources for threat hunting. Through automation and data-driven analysis, it seeks to enable continuous threat identification without overburdening analyst teams.

The agent is auditable, recording each step for transparency and accountability. This approach allows teams with constrained resources to maintain proactive security.