The shortlist looks identical. The architecture is not. Every AI pen test vendor on your shortlist will tell you their false positive rate is under five percent. Their demos will look impressive. Their decks will name the same frontier models. This is the problem. Frontier model access is commoditizing. Any team can wire an Anthropic,… Read More »10 Questions to Ask Your AI Pen Testing Vendor Before You Sign
Every quarter a new three-letter acronym shows up in a vendor deck. Last year it was AEV. This year Gartner introduced COST. CTEM is everywhere. BAS has been around forever and still gets confused with red teaming. Pen test means six different things depending on who you ask. If you run a security program, the… Read More »BAS, CTEM, CART, Pen Test, VA, AEV, COST: What Each Actually Does, and When to Use What
Many objections to belief-state planning are framed as concerns about scalability. In practice, they are concerned about visibility. Systems that avoid explicit belief do not eliminate uncertainty; they merely conceal it. This concealment can appear efficient, but it comes at a cost that is paid later often at the point where decisions matter most. This… Read More »Combinatorial Belief States Are the Cost of Explicit Uncertainty
For most of the past decade, the trajectory of large language model research followed a familiar arc: scale up the compute, widen the data, tune the alignment, ship the product. Each new generation of models arrived with modestly improved benchmark scores, better instruction-following, and marginally reduced hallucination rates. Opus replaced Sonnet. Sonnet replaced Haiku. The… Read More »Demystifying Claude Mythos Preview: The Model That Changed Cybersecurity Forever
This article is a continuation of Why LLMs Are Not Planning Machines. In that earlier post, the core claim was simple: large language models can generate plausible action sequences, but they do not plan. They lack a mechanism to reason over uncertainty across time. This follow-up post focuses on what is missing. The missing abstraction is the… Read More »Belief State: Why AI Planning Fails Without It