Deflectra Logo
Deflectra Features
Multi-Agent Architecture

Security Agents & Tools

A specialized fleet of AI agents working in concert — each an expert in its domain — to achieve the level of coverage and precision traditional tools cannot match.

Core Infrastructure Agents

Our agents are the foundation of our analysis pipeline, providing a comprehensive and accurate basis for every scan.

Documentation Agent
Endpoint Scanning Agent
Endpoint Verification & Deduplication Agent
Import Discovery Agent
CVE Association Agent

Vulnerability & Analysis Agents

These agents use offensive security techniques and semantic analysis of your application's source code and runtime logic to identify vulnerabilities.

Vulnerability Agent (Main)
Code Interaction Agent
Semgrep Agent
AI Scanning Agent
SAST Agent (Static Application Security Testing)
DAST Agent (Dynamic Application Security Testing)
Vulnerability Chaining Agent

Observation & Auditing Agents

For trust and security, it’s vital that every action taken by the AI can be audited and that it’s transparent. The following agents ensure that this requirement is met.

Endpoint Vulnerability Agent
AI Interaction Logger
DAST HTTP Logger
Built-in Tooling

Tools Arsenal

Every agent has access to a purpose-built set of tools — from raw TCP sockets to AI-powered code delegation — giving the system full control over the attack surface.

📁

File System

5 tools

List Files

Lists the contents of a project directory

Read File

Reads a full file with line numbers

Read File Segment

Reads a specific line range from a file

Find Files

Recursively searches files by name or glob pattern

Grep Search

Searches text within file contents

🌐

HTTP

4 tools

HTTP Request

Performs a standard HTTP request (GET, POST, etc.)

Batch HTTP Request

Executes multiple requests in batch, in series or parallel

Brute Force Request

Iterates automatic payloads against an endpoint with success criteria

Raw HTTP Request

Sends raw bytes over TCP/TLS for full protocol control

🔢

Encoding

2 tools

Encode Text

Encodes text in base64, hex, URL, AES, RSA, JSFuck, PHP Filter Chain, etc.

Decode Text

Decodes text from base64, hex, URL, AES, RSA, etc.

🧬

Serialization

1 tool

Serialize Object

Generates insecure deserialization payloads in Java, PHP, Phar or Python/Pickle

🔍

Semgrep

1 tool

Semgrep Rule Generator

Generates a Semgrep rule with AI and runs it against the project

Endpoints

3 tools

Add Endpoint

Registers a discovered API endpoint in the database

Add Multiple Endpoints

Registers multiple endpoints in batch efficiently

Semgrep Endpoint Rule

Detects endpoints with Semgrep and verifies them with AI before saving

🐛

Vulnerabilities

2 tools

Report Vulnerability

Reports a vulnerability and starts the deduplication & verification pipeline

Search Related Vulnerabilities

Searches for a related vulnerability in DB or code for chained exploits

🤖

Sub-Agents

3 tools

Dynamic Vulnerability Verifier

Launches a sub-agent that verifies the vulnerability by executing real attacks

Delegate HTTP Task

Delegates a complex HTTP task to a specialised HTTP agent

Delegate Code Analysis

Delegates a code question to a static analysis specialist agent