Cycode, a leader in AI-native application security, has launched its AI Exploitability Agent at Black Hat 2025, a groundbreaking tool designed to prioritize and remediate high-risk vulnerabilities with unprecedented speed. By addressing the surge in vulnerabilities from AI-generated code, this agent empowers security teams to reduce mean time to remediation (MTTR) by over 99%, transforming how organizations secure software in the AI-driven development era.
The rise of AI coding tools like Cursor, generating over a billion lines of code daily, introduces millions of new vulnerabilities, with estimates suggesting 40% of AI-generated apps contain security flaws. As Lior Levy, CEO and Co-founder of Cycode, states, “The AI coding revolution threatens to completely overwhelm traditional approaches. It’s no longer enough to just keep pace; security must take the lead, leveraging automation and AI that provides crystal-clear visibility, intelligent prioritization, and automated fixes.” Cycode’s AI Exploitability Agent addresses this by automating exploitability analysis, answering critical questions about vulnerability risk, exploitability, and root causes in minutes rather than days.
The AI Exploitability Agent, part of Cycode’s suite of AI Security Teammates, leverages the Risk Intelligence Graph (RIG) and Model Context Protocol (MCP) to deliver:
These capabilities slash MTTR from over 10 months to just 3 days, as validated by Solaris, which reported a 99.4% reduction in remediation time and automation of 46% of critical fixes.
Integrated with Cycode’s AI-native platform, the Exploitability Agent works alongside the AI Fix and Remediation Teammate to suggest context-aware code fixes tailored to organizational frameworks and coding patterns. This synergy streamlines DevSecOps workflows, reducing alert fatigue and enabling developers to focus on critical tasks. The platform also supports secure AI development, change impact analysis, and no-code automation, ensuring security keeps pace with rapid development cycles.
Cycode’s AI Security ROI Calculator helps organizations quantify the benefits of AI-driven security, focusing on faster remediation, improved triage through risk scoring, and actionable insights from natural language queries. This tool underscores the platform’s value in addressing the overwhelming volume of security alerts in modern development environments.
Cycode’s AI Exploitability Agent, debuted at Black Hat 2025, sets a new standard for application security by leveraging AI to prioritize and fix vulnerabilities with unmatched efficiency. By addressing the challenges of AI-generated code and integrating seamlessly with DevSecOps workflows, Cycode empowers organizations to secure software at scale, ensuring resilience in the face of evolving cyber threats.
Cycode's AI-Native Application Security Platform unites security and development teams with actionable context from code to runtime to identify, prioritize, and fix the software risks that matter.
Powered by proprietary scanners, third-party integrations, and the Risk Intelligence Graph (RIG), Cycode delivers unified, correlated insight across the Software Factory. Its unique ability to sense, reason, and act with context in the AI-Era comes from its foundational convergence of AST, ASPM, and Software Supply Chain Security—purpose-built to secure both AI- and human-generated code.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.