بنقرة واحدة
thrunt-autonomous
Run all remaining phases autonomously — discuss→plan→execute per phase
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Run all remaining phases autonomously — discuss→plan→execute per phase
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
Show available THRUNT threat hunting commands and artifact layout
Map available telemetry, query surfaces, tenants, retention windows, and investigation blind spots
Initialize a threat hunting case from a signal, detection, intel lead, or analyst suspicion
Initialize a threat hunting program with an environment map, tool inventory, huntmap, and empty execution directories
Create phase plans for a threat hunt with exact telemetry tasks, receipts, and query outputs
Publish a hunt as a case report, escalation, detection promotion, or leadership summary
| name | thrunt-autonomous |
| description | Run all remaining phases autonomously — discuss→plan→execute per phase |
| argument-hint | [--from N] |
| allowed-tools | Read, Write, Bash, Glob, Grep, AskUserQuestion, Task |
Uses HUNTMAP.md phase discovery and Skill() flat invocations for each phase command. After all phases complete: milestone audit → complete → cleanup.
Creates/Updates:
.planning/STATE.md — updated after each phase.planning/HUNTMAP.md — progress updated after each phaseAfter: Milestone is complete and cleaned up.
<execution_context> @.github/thrunt-god/workflows/autonomous.md @.github/thrunt-god/references/ui-brand.md </execution_context>
Optional flag: `--from N` — start from phase N instead of the first incomplete phase.Project context, phase list, and state are resolved inside the workflow using init commands (thrunt-tools.cjs init milestone-op, thrunt-tools.cjs huntmap analyze). No upfront context loading needed.