Comment by sandeepkd

7 hours ago

I was expecting some more concrete numbers and surprises. It just seems like a balanced promotion article probably written using LLM itself.

6 comments

sandeepkd

Reply
wslh  7 hours ago

In the last few days I was recommending to read the insights from XBOW [1], it's a competitor but it adds more information to the discussion.

[1] https://xbow.com/blog/mythos-offensive-security-xbow-evaluat...

  • sandeepkd  7 hours ago

    Thanks for sharing. Its definitely more concrete. Some of the things that I was hoping to find were, the number of false positives, the times it takes to identify the false positives from real ones, the taxation on human mind to perform this exercise. Did anyone manually verified the exploits which were identified by the LLM or were they assumed correct based on the explanation. I do understand that the target audience of these articles is probably the decision makers so the language and content has to be tailored accordingly.

    • pixl97  6 hours ago

      >, the number of false positives,

      Really this is why the LLM needs to be able to write exploits for issues it finds. Of course that leads down a rabbit hole of other issues. But if an exploit works, then that's pretty conclusive evidence.

      2 replies →

  • FergusArgyll  6 hours ago

    That is a good article.

    Interesting that gpt-5.5, while not as good as mythos, also seems like a decent step up