VulnHunter: Capital One's agentic AI code security tool
4 hours ago
- #AI Security
- #Vulnerability Detection
- #Open Source
- Capital One has released an open-source AI security tool named VulnHunter to proactively detect and fix code vulnerabilities from an attacker's perspective, in response to AI-enhanced threats.
- VulnHunter features a falsification engine to minimize false positives, an attacker-first forward analysis to simulate real attack paths, and evidence-backed remediation modeling to provide targeted fixes.
- The tool is designed with a developer-first mindset to integrate smoothly into workflows, and Capital One open-sourced it to foster collective defense across the tech community.