.jpg)
1 hour ago
3
Article content
New on-demand solution rapidly tests attack surfaces and centralises findings within YesWeHack’s offensive security platform
THIS CONTENT IS RESERVED FOR SUBSCRIBERS ONLY
Subscribe now to read the latest news in your city and across Canada.
- Exclusive articles from Barbara Shecter, Joe O'Connor, Gabriel Friedman, and others.
- Daily content from Financial Times, the world's leading global business publication.
- Unlimited online access to read articles from Financial Post, National Post and 15 news sites across Canada with one account.
- National Post ePaper, an electronic replica of the print edition to view on any device, share and comment on.
- Daily puzzles, including the New York Times Crossword.
SUBSCRIBE TO UNLOCK MORE ARTICLES
Subscribe now to read the latest news in your city and across Canada.
- Exclusive articles from Barbara Shecter, Joe O'Connor, Gabriel Friedman and others.
- Daily content from Financial Times, the world's leading global business publication.
- Unlimited online access to read articles from Financial Post, National Post and 15 news sites across Canada with one account.
- National Post ePaper, an electronic replica of the print edition to view on any device, share and comment on.
- Daily puzzles, including the New York Times Crossword.
REGISTER / SIGN IN TO UNLOCK MORE ARTICLES
Create an account or sign in to continue with your reading experience.
- Access articles from across Canada with one account.
- Share your thoughts and join the conversation in the comments.
- Enjoy additional articles per month.
- Get email updates from your favourite authors.
THIS ARTICLE IS FREE TO READ REGISTER TO UNLOCK.
Create an account or sign in to continue with your reading experience.
- Access articles from across Canada with one account
- Share your thoughts and join the conversation in the comments
- Enjoy additional articles per month
- Get email updates from your favourite authors
Sign In or Create an Account
or
Article content
PARIS — YesWeHack, the offensive security and exposure management platform, announces Agentic Pentest, an on-demand solution using autonomous AI agents to test organisations’ assets and deliver same-day findings.
Article content
Article content
Shaped by YesWeHack’s extensive offensive security experience, Agentic Pentest helps organisations identify vulnerabilities, test their real-world exploitability and uncover attack paths across in-scope assets.
Article content
Article content
The solution supports black box, grey box and white box testing of web applications, mobile apps, APIs and other internet-facing assets.
Article content
By signing up you consent to receive the above newsletter from Postmedia Network Inc.
Article content
YesWeHack, leader in offensive security in Europe and APAC, leverages the best available frontier models for offensive testing, including open-weight models. This flexible approach enables organisations to use models developed and/or hosted anywhere in the world, such as in EU or APAC.
Article content
Agents operate within guardrails developed by YesWeHack to protect the confidentiality, integrity and availability of customer systems throughout testing.
Article content
Unified vulnerability management
Article content
Agentic Pentest is integrated into YesWeHack’s wider offensive security and exposure management platform.
Article content
Customers can manage Agentic Pentest findings alongside vulnerabilities identified through YesWeHack Bug Bounty Programs and human-led Continuous Pentesting, which uncover complex vulnerabilities missed by fully automated approaches, Vulnerability Disclosure Policies and Security Checkpoints detecting actively exploited CVEs.
Article content
To streamline remediation further, security teams have the option of leveraging YesWeHack’s in-house triage team to validate, reproduce and enrich reports, guaranteeing zero false positives.
Article content
Guillaume Vassault-Houlière, CEO co-founder of YesWeHack, comments:
Article content
“Agentic Pentest is faster and simpler to set up and run than traditional human-led pentesting, while offering broader coverage, greater scalability and lower costs. This enables SecOps teams to identify and remediate vulnerabilities more quickly – an imperative as attackers become increasingly empowered by AI and exploitation windows continue to shrink.”
Article content
“Together with our wider offensive security and exposure management platform, Agentic Pentest gives security teams the agility to keep pace with adversaries and cut through the noise by rapidly validating and prioritising vulnerabilities that pose major risk.”
Article content
“Ultimately, a diverse offensive security strategy drives operational efficiency. Bug Bounty and community expertise remain essential pillars of any proactive approach, as they have consistently proven in practice.”
Article content
Key features
Article content
- On-demand testing with validated findings delivered as testing progresses
- Black box, grey box and white-box testing of web applications, mobile apps, APIs and other internet-facing assets
- Coverage of high-impact vulnerability classes, including OWASP Top 10 and full attack paths
- Optional 24/7 expert triage validating, reproducing and enriching findings
- Centralised remediation workflows, analytics and exportable reporting for a unified view of cyber risk and simplified compliance
Article content
Article content
Availability and roadmap
Article content
Agentic Pentest is available to test assets across the external attack surface, with YesWeHack developing support for internal testing scopes. The solution has been rolled out at French multinationals Dassault Systèmes and Sanofi, and several other CAC 40 companies.
Article content
The capabilities will be available to customers of Sekost, cybersecurity audit company acquired by YesWeHack in 2025.
Article content
Data generated by YesWeHack Bug Bounty Programs will not be used to train AI models used by Agentic Pentest.
Article content
About YesWeHack
Article content
YesWeHack is a leading Offensive Security and Exposure Management platform delivering integrated, API-based solutions to secure organisations’ growing attack surfaces. Its human-in-the-loop model combines Bug Bounty (leveraging a global community of 150,000+ skilled ethical hackers), Autonomous Pentest, Continuous Pentesting and unified vulnerability management to deliver agile, exhaustive security testing at scale. Customers include Louis Vuitton, Ferrero, the European Commission, Tencent and L’Oréal Groupe. ISO 27001-certified, CREST-accredited and EU-hosted with full GDPR compliance.
Article content
Article content
Article content
Article content
View source version on businesswire.com:
Article content
Article content
Article content
Contacts
Article content
English (US)