HackerOne has announced significant advancements in its offensive security framework with the transformation of HackerOne AI, known as Hai, into an agentic AI system.
Additionally, the company has launched the AI-native code security solution, HackerOne Code, now generally available. These innovations aim to enhance continuous exposure management by expediting the identification, prioritization, and remediation of vulnerabilities for enterprises.
Enhancing Vulnerability Management with AI
Hai, the cohesive team of AI agents from HackerOne, plays a pivotal role by analyzing and contextualizing security findings to help organizations swiftly prioritize, validate, and address risks. With insights derived from over half a million validated vulnerabilities, 70% of users have reported substantial time savings, claiming they save up to 40 hours monthly.
Streamlining Risk Remediation
The current suite of Hai agents is transforming organizational workflows through:
- Priority Escalation Agent, efficiently identifying critical risks
- Deduplication Agent, reducing redundancy and minimizing noise
- Report Assistant Agent, generating comprehensive and consistent reports
- Insight Agent, providing historical context to expedite validation
Connor Knabe, Application Security Architect at Veterans United Home Loans, remarked, "Hai cut our validation time from 20 minutes to just 5. By replacing manual steps with clear context, we validate faster, clarify impact, and stay aligned.”
Introducing HackerOne Code
HackerOne Code has been launched as a solution designed for the AI-driven development environment
To tackle the challenge of pre-deployment vulnerability detection and mitigation, HackerOne Code has been launched as a solution designed for the AI-driven development environment. This tool is engineered to function both as a developer and a security researcher, scaling the discovery of vulnerabilities through a combination of AI and human oversight.
Looking Ahead with Agentic PtaaS
HackerOne is also previewing its upcoming initiative, Agentic Pentest as a Service (PtaaS), which represents a leap in validation processes. Agentic PtaaS aims to verify exploitability consistently on an AI-driven scale, while maintaining the essential input of human expertise. This development expands exposure management into adversarial validation, providing organizations with conclusive evidence of exploitation to enhance prioritization and remediation strategies.
Commitment to AI-Powered Security
Chief Product Officer Nidhi Aggarwal highlighted the importance of Hai in the evolution of AI-powered offensive security, stating, "Hai has been central to our vision for AI-powered offensive security, and today marks the next stage in its evolution.”
She added, “Powered by the insights drawn from over a decade of offensive security expertise, Hai’s new agents and the introduction of Agentic PtaaS extends its capabilities from validation to proof of exploitability, helping organizations continuously reduce exposure and accelerate remediation at scale. In the AI era, secure development must be built in, not bolted on. HackerOne Code empowers developers with validated, trusted code fixes directly within their workflows, enabling them to innovate faster without increasing risk.”
From facial recognition to LiDAR, explore the innovations redefining gaming surveillance
