Ridge Security, a leader in AI-powered offensive security for Continuous Threat Exposure Management, has announced RidgeGen, a comprehensive agentic AI framework that advances security validation from automation to full autonomy. Integrated into its flagship product, RidgeBot, RidgeGen enables intelligent, context-aware testing across IT, OT, and AI infrastructure, helping organizations strengthen defenses against breaches and ransomware.
RidgeGen transforms RidgeBot into a multi-agent ecosystem capable of collaborative reconnaissance, coordinated exploit chaining, and dynamic threat modeling. This architecture addresses complex threats like JWT confusion attacks, which have affected numerous enterprises. By leveraging contextual intelligence from large language models alongside proven security expertise, RidgeGen delivers precise testing results, enabling security teams to focus on high-impact events rather than routine alerts.
Unlike traditional tools limited to websites, RidgeBot powered by RidgeGen conducts thorough assessments of entire IT infrastructures, including hosts, networks, applications, APIs, and LLMs. This expanded scope positions it as the most comprehensive offensive security framework available for commercial use, supporting the demands of modern CTEM practices. As Lydia Zhang, President and co-Founder of Ridge Security, stated: "RidgeBot powered by RidgeGen helps our customers maintain a more confident and secure posture against breaches and ransomware attacks by reducing both false positives and false negatives in security. It allows security teams to expand security testing beyond 1-day exploits to uncover Zero Day vulnerabilities specific to their environment."
At a private preview event in San Jose on September 25, Ridge Security demonstrated RidgeGen's capabilities and shared results from the DEFCON 2025 Benchmark Bakeoff. RidgeBot achieved an 88% completion rate, outperforming competitors at 38% and 82%, while producing zero false positives and minimizing false negatives. This performance underscores RidgeGen's precision in dynamic cybersecurity environments.
Earlier in 2025, Ridge Security released RidgeBot 5.2 with an initial version of RidgeGen, incorporating a trained generative AI small language model for advanced security modules. The full framework builds on this foundation, integrating AI to boost efficiency and accuracy. Charles Kolodgy, principal at Security Mindsets, noted: "Cybersecurity lives in a dynamic environment and if you do not improve you will be left behind. Ridge Security is providing the innovation that allows security teams to stay ahead of AI-powered threat actors. RidgeGen seamlessly integrates specially trained AI into RidgeBot to improve precision discovery and protection capabilities without creating ghost alerts (false positives and negatives). Improving automation capabilities associated with CTEM allows human experts to concentrate on the most important events."
RidgeGen represents a pivotal evolution in offensive security, equipping CISOs and teams with autonomous tools to navigate AI-driven threats. By minimizing inaccuracies and broadening validation scope, the framework not only enhances operational efficiency but also fortifies enterprise resilience, ensuring proactive protection in an increasingly sophisticated threat landscape.
Ridge Security, a leader in AI-powered offensive security, is dedicated to bringing to market innovative cybersecurity products that empower enterprise CISOs and security teams to stay ahead of evolving threats. Our products incorporate advanced artificial intelligence to improve efficacy and efficiencies of security validations.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.