Skip to main content
Research Agent handles open-ended security research. It gathers intelligence about a target, investigates vulnerability classes, and builds context before or during active testing: pulling from web sources, code repositories, and real-time feeds.

What it does

  • Web research: deep search and content extraction across security advisories, exploit disclosures, and technical documentation
  • Real-time intelligence: searches X (Twitter) and live web sources for current threat actor activity and newly disclosed vulnerabilities
  • Code search: searches GitHub and grep.app for relevant code patterns, CVE proof-of-concepts, and exploit references
  • Knowledge base access: queries Neo’s internal security knowledge base for methodology and context
  • Memory recall: retrieves prior research and findings from previous tasks to avoid redundant work

How it fits in

Research Agent runs in the planning phase to build target context before active testing. It is also invoked directly for any task focused on intelligence gathering, such as researching a CVE, assessing a technology stack’s threat landscape, or monitoring for new disclosures on a recurring schedule.