RichardHam.co.uk Blog

Tag: CrewAI

  • AI Arms Race: Predictive Cyber Defence

    AI Arms Race: Predictive Cyber Defence Is Here
    Published: August 20, 2025 (retrospective)

    The AI cybersecurity market is projected to hit $60B by 2028—and for good reason. In August 2025, SentinelForge v2’s predictive threat hunting caught a client ransomware pivot 72 hours before it would have detonated. No SOC. No SIEM subscription. Just CrewAI agents, local LLMs, and disciplined governance.

    SentinelForge v2 Production Stack

    proxmox-ve
└── sentinelforge (docker)
    ├── crewai crews     (24/7 autonomous monitoring)
    ├── ollama           (local inference)
    ├── grafana          (observability)
    └── uptimekuma       (SLA: 99.9%)

    The Catch: Anatomy of a Prevention

    • Day 1: Anomalous LDAP query pattern flagged by Audit Crew
    • Day 2: Lateral movement indicators correlated across 3 systems
    • Day 3 (72h): Human review triggered; client isolated affected segment
    • Result: Zero encryption, zero ransom, zero downtime

    What This Means for SMEs

    Enterprise-grade predictive defence is now accessible without enterprise budgets. The stack cost: £0/month in cloud tokens, running on repurposed hardware.

    1. AI agents don’t get tired—24/7 monitoring without alert fatigue.
    2. Local inference keeps sensitive threat data off third-party servers.
    3. Governance logs every detection decision—invaluable for insurance and compliance.

    Want predictive AI defence for your business? Book a Secure AI QuickScan.

    Next: EU AI Act compliance—governance frameworks in practice (Nov 2025).

  • CrewAI Launch: Building Secure Agent Crews

    CrewAI Launch: When Agents Got Dangerous (and Profitable)
    Published: October 30, 2024 (retrospective)

    CrewAI’s October 2024 multi-agent platform launch changed everything. My Control Tower experiments suddenly had proper orchestration. But with power came risk—autonomous agents in cybersecurity environments need guardrails, not just prompts. SentinelForge v1 was born as my answer to that challenge.

    SentinelForge Architecture v1

    SentinelForge (Proxmox VM)
├── CrewAI          (agent orchestration)
├── Ollama          (local inference, zero cloud leakage)
├── Vaultwarden     (secrets management)
└── GitHub          (human approval gates)

    First production crew: automated M365 security audits across 5 clients. 92% accuracy on first run. Zero token cost.

    Crew Results

    Crew Tasks Automated Time Saved
    Audit Crew 17 security checks 15h/week
    Cost Router Crew LLM query routing £110/week
    Blog Crew (prototype) Draft MD posts 8h/post

    Guardrail Lessons

    1. Role-scoped tools only—agents get the minimum permissions to complete their task.
    2. Every output logged to GitHub before any action taken.
    3. Prompt injection testing before every production deployment.

    CrewAI accelerated my roadmap by 6 months. SentinelForge went from concept to production platform in 8 weeks.

    Interested in secure AI agents for your business? Let’s talk.

    Next: 2024 Year in Review (Dec 2024).

  • Control Tower Blueprint: Orchestrating Multi-AI Chaos

    Control Tower Blueprint: From AI Chaos to Factory
    Published: July 20, 2024 (retrospective)

    By mid-2024 I was juggling Claude, Copilot, Perplexity, and local Ollama instances simultaneously. Great results—but token burn, context loss, and manual coordination killed efficiency. Control Tower v1.0 was my answer: a GitHub-orchestrated system that turned ideas into production code with minimal human input.

    The Workflow

    Idea → GitHub Issue → Claude researches
     → Copilot codes → I approve PR → deployed

    Key design decisions:
    Priority + budget fields on every issue halt overspend automatically
    Human gate on every PR—AI proposes, I approve
    Nightly decision cycle—agents run overnight, I review at breakfast

    The Numbers

    Metric Before Control Tower After Gain
    Code hours/week 20h 4h 80% reduction
    Token cost/week £120 £12 90% reduction
    Projects shipped/month 1 4 4x
    GitHub commits/month 45 200+ 4.4x

    What Made It Work

    1. Local-first routing: Proxmox + Ollama handled 70% of queries free.
    2. Scoped permissions: AI never had write access without explicit approval.
    3. Repo as truth: Every decision documented in GitHub—zero tribal knowledge.

    Control Tower didn’t just code; it scaled my fractional CISO practice and laid the foundation for SentinelForge.

    Want to automate your AI workflows? Book a Secure AI QuickScan.

    Next: CrewAI launch transforms agent security (Oct 2024).

Powered by
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
Powered by