AI-native detection engineering tools for practitioners. Inspectable scoring. CI-native. BYOLLM. Built in the open.

Open-source CLIs and GitHub Actions for AI-native detection engineering. Built by James Bower — 25 years in security operations. The edge: applying quant and high-frequency research patterns to ML cybersec problems, in ways most of the industry hasn't considered.

The overlap between detection engineers and AI/ML cybersecurity practitioners is an underserved audience. Enterprise platforms solve the detection lifecycle problem for Fortune 500 SOCs at $150K+ ACV. Detect-Forge solves it for the detection engineer with a CI pipeline.

• Free + OSS + CI-native. Runs locally, runs in GitHub Actions, no data leaves your environment.
• Explainability is a feature, not a constraint. Every score has a reason. Every layer is inspectable Python. Every AI output is human-gated. In security, false confidence is worse than slow.
• BYOLLM. Opt-in LLM features use your API key — we never pay inference for you, and there's no vendor lock-in on model choice.
• Quant research as an edge. HFT and quant finance already solved signal decay, embedding drift, and multi-signal scoring — years before ML cybersec ran into the same problems. Detect-Forge imports those patterns into detection engineering, not the other way around.

Current tools are AI-native. Later tools on the roadmap go agentic:

• shadow-ai-detect (late 2026) — AI agent governance SDK for security teams. OAuth sprawl, prompt injection, privilege escalation in multi-agent pipelines.
• detection-eng-agent (2027) — open-source agentic SOC capabilities focused on triage and backtesting sub-agents.

• 📝 Blog & articles → jamesbower.com
• 📧 Newsletter — get the GitHub link 24 hours before each launch → Subscribe
• 🎮 Discord — Machine Learning in Security → Join
• 🌐 SaaS (coming Q3 2026) → detectforge.io

Built by Bower Enterprises LLC · ML cybersec with a quant finance edge