Short paper: Evaluating the capabilities of AI-based penetration testing tools

Jacques Ophoff; Ibeabuchi Egbu; Sanaz Kavianpour

doi:10.1007/978-3-032-16092-8_16

Short paper: Evaluating the capabilities of AI-based penetration testing tools

Jacques Ophoff^*
, Ibeabuchi Egbu
, Sanaz Kavianpour

^*Corresponding author for this work

Department of Cybersecurity and Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Advances in AI are extending the capabilities of tools for penetration testing. However, due to a fragmented market and rapid technical developments the extent of capabilities and maturity of available tools are not well understood. This short paper provides an overview of this area by reviewing recent academic literature and proposing several assessment criteria. The literature review identifies an active and growing research field, with numerous advancements in the past 18 months. A focus on LLM agents has progressed capabilities towards exploiting zero-day vulnerabilities. Frontier models show superior performance when combined with a focused knowledge base and multi-agent architectures. However, in most cases human involvement is still required, and fully autonomous solutions are not yet evident. To evaluate the maturity of tools, 12 assessment criteria within four broad categories are proposed: AI sophistication, action capabilities, features, and requirements. Maturity levels are proposed for each criterion which enables an objective benchmark of tool capabilities.

Original language	English
Title of host publication	Computer Security. ESORICS 2025 International Workshops
Subtitle of host publication	ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II
Editors	Romain Laborde, Joaquin Garcia-Alfaro, Gregory Blanc, Pierre-François Gimenez, Harsha Kalutarage, Naoto Yanai, Ankur Shukla, Sandeep Pirbhulal, Joachim Posegga, Kwok-Yan Lam
Place of Publication	Cham
Publisher	Springer
Pages	296-305
Number of pages	10
Volume	Part II
ISBN (Electronic)	9783032160928
ISBN (Print)	9783032160911
DOIs	https://doi.org/10.1007/978-3-032-16092-8_16
Publication status	Published - 1 May 2026
Event	Workshop on Security and Artificial Intelligence - Toulouse, France Duration: 25 Sept 2025 → 26 Sept 2025 https://sites.google.com/view/secai2025/home

Publication series

Name	Lecture Notes in Computer Science (LNCS)
Publisher	Springer
Volume	16232
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Workshop

Workshop	Workshop on Security and Artificial Intelligence
Abbreviated title	SECAI 2025
Country/Territory	France
City	Toulouse
Period	25/09/25 → 26/09/25
Internet address	https://sites.google.com/view/secai2025/home

Keywords

AI
Penetration testing
Assessment criteria

Access to Document

10.1007/978-3-032-16092-8_16

Embargoed Document

Ophoff_EvaluatingTheCapabilities_Accepted_2025
Accepted author manuscript, 720 KB
Embargo ends: 01/05/2027 00:00 BST

Cite this

Ophoff, J., Egbu, I., & Kavianpour, S. (2026). Short paper: Evaluating the capabilities of AI-based penetration testing tools. In R. Laborde, J. Garcia-Alfaro, G. Blanc, P.-F. Gimenez, H. Kalutarage, N. Yanai, A. Shukla, S. Pirbhulal, J. Posegga, & K.-Y. Lam (Eds.), Computer Security. ESORICS 2025 International Workshops: ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II (Vol. Part II, pp. 296-305). (Lecture Notes in Computer Science (LNCS); Vol. 16232). Springer. https://doi.org/10.1007/978-3-032-16092-8_16

Ophoff, Jacques ; Egbu, Ibeabuchi ; Kavianpour, Sanaz. / Short paper: Evaluating the capabilities of AI-based penetration testing tools. Computer Security. ESORICS 2025 International Workshops: ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II. editor / Romain Laborde ; Joaquin Garcia-Alfaro ; Gregory Blanc ; Pierre-François Gimenez ; Harsha Kalutarage ; Naoto Yanai ; Ankur Shukla ; Sandeep Pirbhulal ; Joachim Posegga ; Kwok-Yan Lam. Vol. Part II Cham : Springer, 2026. pp. 296-305 (Lecture Notes in Computer Science (LNCS)).

@inproceedings{90b6526f7100429fba2bf9123ca7c4e7,

title = "Short paper: Evaluating the capabilities of AI-based penetration testing tools",

abstract = "Advances in AI are extending the capabilities of tools for penetration testing. However, due to a fragmented market and rapid technical developments the extent of capabilities and maturity of available tools are not well understood. This short paper provides an overview of this area by reviewing recent academic literature and proposing several assessment criteria. The literature review identifies an active and growing research field, with numerous advancements in the past 18 months. A focus on LLM agents has progressed capabilities towards exploiting zero-day vulnerabilities. Frontier models show superior performance when combined with a focused knowledge base and multi-agent architectures. However, in most cases human involvement is still required, and fully autonomous solutions are not yet evident. To evaluate the maturity of tools, 12 assessment criteria within four broad categories are proposed: AI sophistication, action capabilities, features, and requirements. Maturity levels are proposed for each criterion which enables an objective benchmark of tool capabilities.",

author = "Jacques Ophoff and Ibeabuchi Egbu and Sanaz Kavianpour",

note = "{\textcopyright} 2026 The Author(s), under exclusive license to Springer Nature Switzerland AG Data availability statement: Not present.; Workshop on Security and Artificial Intelligence, SECAI 2025 ; Conference date: 25-09-2025 Through 26-09-2025",

year = "2026",

month = may,

day = "1",

doi = "10.1007/978-3-032-16092-8\_16",

language = "English",

isbn = "9783032160911",

volume = "Part II",

series = "Lecture Notes in Computer Science (LNCS)",

publisher = "Springer",

pages = "296--305",

editor = "Romain Laborde and Joaquin Garcia-Alfaro and Gregory Blanc and Pierre-Fran{\c c}ois Gimenez and Harsha Kalutarage and Naoto Yanai and Ankur Shukla and Sandeep Pirbhulal and Joachim Posegga and Kwok-Yan Lam",

booktitle = "Computer Security. ESORICS 2025 International Workshops",

url = "https://sites.google.com/view/secai2025/home",

}

Ophoff, J , Egbu, I & Kavianpour, S 2026, Short paper: Evaluating the capabilities of AI-based penetration testing tools. in R Laborde, J Garcia-Alfaro, G Blanc, P-F Gimenez, H Kalutarage, N Yanai, A Shukla, S Pirbhulal, J Posegga & K-Y Lam (eds), Computer Security. ESORICS 2025 International Workshops: ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II. vol. Part II, Lecture Notes in Computer Science (LNCS), vol. 16232, Springer, Cham, pp. 296-305, Workshop on Security and Artificial Intelligence, Toulouse, France, 25/09/25. https://doi.org/10.1007/978-3-032-16092-8_16

Short paper: Evaluating the capabilities of AI-based penetration testing tools. / Ophoff, Jacques ; Egbu, Ibeabuchi ; Kavianpour, Sanaz.
Computer Security. ESORICS 2025 International Workshops: ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II. ed. / Romain Laborde; Joaquin Garcia-Alfaro; Gregory Blanc; Pierre-François Gimenez; Harsha Kalutarage; Naoto Yanai; Ankur Shukla; Sandeep Pirbhulal; Joachim Posegga; Kwok-Yan Lam. Vol. Part II Cham: Springer, 2026. p. 296-305 (Lecture Notes in Computer Science (LNCS); Vol. 16232).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Short paper: Evaluating the capabilities of AI-based penetration testing tools

AU - Ophoff, Jacques

AU - Egbu, Ibeabuchi

AU - Kavianpour, Sanaz

PY - 2026/5/1

Y1 - 2026/5/1

N2 - Advances in AI are extending the capabilities of tools for penetration testing. However, due to a fragmented market and rapid technical developments the extent of capabilities and maturity of available tools are not well understood. This short paper provides an overview of this area by reviewing recent academic literature and proposing several assessment criteria. The literature review identifies an active and growing research field, with numerous advancements in the past 18 months. A focus on LLM agents has progressed capabilities towards exploiting zero-day vulnerabilities. Frontier models show superior performance when combined with a focused knowledge base and multi-agent architectures. However, in most cases human involvement is still required, and fully autonomous solutions are not yet evident. To evaluate the maturity of tools, 12 assessment criteria within four broad categories are proposed: AI sophistication, action capabilities, features, and requirements. Maturity levels are proposed for each criterion which enables an objective benchmark of tool capabilities.

AB - Advances in AI are extending the capabilities of tools for penetration testing. However, due to a fragmented market and rapid technical developments the extent of capabilities and maturity of available tools are not well understood. This short paper provides an overview of this area by reviewing recent academic literature and proposing several assessment criteria. The literature review identifies an active and growing research field, with numerous advancements in the past 18 months. A focus on LLM agents has progressed capabilities towards exploiting zero-day vulnerabilities. Frontier models show superior performance when combined with a focused knowledge base and multi-agent architectures. However, in most cases human involvement is still required, and fully autonomous solutions are not yet evident. To evaluate the maturity of tools, 12 assessment criteria within four broad categories are proposed: AI sophistication, action capabilities, features, and requirements. Maturity levels are proposed for each criterion which enables an objective benchmark of tool capabilities.

U2 - 10.1007/978-3-032-16092-8_16

DO - 10.1007/978-3-032-16092-8_16

M3 - Conference contribution

SN - 9783032160911

VL - Part II

T3 - Lecture Notes in Computer Science (LNCS)

SP - 296

EP - 305

BT - Computer Security. ESORICS 2025 International Workshops

A2 - Laborde, Romain

A2 - Garcia-Alfaro, Joaquin

A2 - Blanc, Gregory

A2 - Gimenez, Pierre-François

A2 - Kalutarage, Harsha

A2 - Yanai, Naoto

A2 - Shukla, Ankur

A2 - Pirbhulal, Sandeep

A2 - Posegga, Joachim

A2 - Lam, Kwok-Yan

PB - Springer

CY - Cham

T2 - Workshop on Security and Artificial Intelligence

Y2 - 25 September 2025 through 26 September 2025

ER -

Ophoff J , Egbu I , Kavianpour S. Short paper: Evaluating the capabilities of AI-based penetration testing tools. In Laborde R, Garcia-Alfaro J, Blanc G, Gimenez PF, Kalutarage H, Yanai N, Shukla A, Pirbhulal S, Posegga J, Lam KY, editors, Computer Security. ESORICS 2025 International Workshops: ANUBIS 2025, SSECAI 2025, SecAssure 2025, STMUS 2025, Toulouse, France, September 22–24, 2025, Revised Selected Papers, Part II. Vol. Part II. Cham: Springer. 2026. p. 296-305. (Lecture Notes in Computer Science (LNCS)). Epub 2026 May 1. doi: 10.1007/978-3-032-16092-8_16

Short paper: Evaluating the capabilities of AI-based penetration testing tools

Abstract

Publication series

Workshop

Keywords

Access to Document

Embargoed Document

Fingerprint

Cite this