Metadata-Version: 2.4
Name: llm-hunt
Version: 0.1.0
Summary: CLI-based threat hunting platform using LLM and RAG for semantic search of security logs
Author-email: Jonas Colmsjö <jonas@colmsjo.com>
License: MIT
Project-URL: Homepage, https://github.com/yourusername/llm-hunt
Project-URL: Repository, https://github.com/yourusername/llm-hunt
Keywords: security,threat-hunting,llm,rag,siem,cybersecurity
Classifier: Development Status :: 3 - Alpha
Classifier: Environment :: Console
Classifier: Intended Audience :: Information Technology
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: MIT License
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Security
Requires-Python: >=3.10
Description-Content-Type: text/markdown
Requires-Dist: msticpy
Requires-Dist: pyarrow
Requires-Dist: psycopg2-binary
Requires-Dist: pgvector
Requires-Dist: ioc-finder
Requires-Dist: sentence-transformers
Requires-Dist: bertopic
Requires-Dist: typer
Requires-Dist: anthropic
Provides-Extra: dev
Requires-Dist: pytest; extra == "dev"
Requires-Dist: ruff; extra == "dev"

# LLM Threat Hunt

Semantic search for security logs using LLM and RAG.

## Setup

```bash
# Start database
docker compose up -d

# Install
python3 -m venv .venv
source .venv/bin/activate
pip install -e .

# Download test data
python scripts/download_mordor.py
```

## Usage

```bash
# Ingest logs
hunt ingest data/

# Check status
hunt status

# Reset database (if needed)
hunt reset
```

## Connect to Database

```bash
docker exec -it threat-hunt-db psql -U threat -d threat_hunt
```

## Requirements

- Python 3.10+
- Docker
