ARES — AI Penetration Testing

Break your defenses
before attackers do.

15 specialized agent clusters. Continuous black-box testing. Humans stay in control.

15
Specialized agent clusters
76
Autonomous sub-agents
9
Vulnerability classes detected
$1–3
Per campaign task
Operating sequence

STRATEGOS runs the mission. You set the scope.

01

SCOUT maps your attack surface

6 recon sub-agents build a complete picture before any attack begins: passive OSINT, port scanning, service enumeration, certificate analysis, and subdomain discovery. Your Rules of Engagement file defines scope and prohibitions — SENTINEL enforces them throughout the campaign, with a kill switch that terminates any action in under 5 seconds.

02

15 clusters execute the attack graph

STRATEGOS, ARES's LLM mission planner, builds a directed acyclic attack graph and dispatches the right clusters: SPIDER probes web and API surfaces (8 sub-agents), FORGE turns findings into working exploits (6 sub-agents), PHANTOM tests post-exploitation paths (8 sub-agents). Clusters share discovered context in real time — each finding opens new branches the next cluster pursues.

03

CRUCIBLE validates. SCRIBE delivers.

Every potential finding passes through CRUCIBLE's 4-stage pipeline — syntax check, cross-agent dedup, evidence grading (L1–L4), LLM reflector veto. Nothing is reported below ≥0.85 confidence. SCRIBE then delivers structured findings with PoC evidence and remediation code from 70+ templates matched to your exact stack.

Comparison brief

Phalanxia AI Pentest vs. traditional pentesting.

Field comparison — AI pentest vs. traditional engagementUNCLASSIFIED
Dimension
Phalanxia AI Pentest
Traditional Pentest
Frequency
Continuous
Annual or point-in-time
Coverage
Full-spectrum, auto-discovered
Manually scoped, constrained
Speed
Hours to complete
2–4 weeks end to end
Cost model
Predictable subscription
$20k–$80k+ per engagement
Retesting
Unlimited, same-day
Billed separately, re-scheduled
Remediation
Code-level fix guidance included
General advice, inconsistent
Scalability
1 app or 100, instant capacity
New SOW per engagement
The architecture

Three systems. One mission.

Every ARES campaign is coordinated by STRATEGOS, constrained by SENTINEL, and validated by CRUCIBLE — three named systems built from the ground up for autonomous offensive security.

STRATEGOS — Mission Orchestrator

STRATEGOS is the LLM mission planner at ARES's core. It builds a directed acyclic attack graph from SCOUT's recon output, schedules cluster tasks with dynamic concurrency across all 76 sub-agents, enforces per-phase token budgets, and detects failure loops — recovering without operator intervention. Game-theory optimized target selection (Nash equilibrium) ensures the highest-value attack paths are pursued first.

  • DAG task scheduler with cycle and stall detection
  • Dynamic concurrency — 76 sub-agents in parallel
  • Nash equilibrium target prioritization
  • Cross-session learning: prior campaign findings inform the next
SENTINEL — Safety & Human Control

SENTINEL is ARES's safety layer. It enforces your Rules of Engagement file for every agent action — blocking attacks on out-of-scope targets, enforcing timing windows, and halting on policy violation. Operators choose an autonomy level from L0 (manual approval per action) to L5 (fully autonomous within ROE). Air-gap deployment is supported; no data leaves the network without operator approval.

  • L0–L5 autonomy spectrum — operator-controlled
  • Rules of Engagement enforcement for every action
  • Kill switch: full campaign abort in <5 seconds
  • gVisor-sandboxed tool execution — host isolation guaranteed
CRUCIBLE — Validation Engine

Every potential finding passes through CRUCIBLE's 4-stage pipeline before being accepted: Stage 1 schema validation, Stage 2 cross-agent deduplication, Stage 3 evidence grading (L1 weak indication → L4 confirmed PoC), Stage 4 LLM reflector veto. Nothing is reported below ≥0.85 confidence. SCRIBE then generates structured findings with 70+ remediation templates matched to your stack.

  • 4-stage pipeline — every finding before acceptance
  • ≥0.85 confidence gate with LLM reflector veto
  • Evidence graded L1 (indication) to L4 (confirmed PoC)
  • 70+ remediation templates matched to your stack
Human control

Autonomous. Not unsupervised.

The first question every security team asks: what stops it from going too far? SENTINEL is the answer — and it was designed before the first cluster was written.

L0–L5 autonomy spectrum

Operators choose exactly how autonomous ARES runs. L0 requires manual approval for every action. L5 runs fully within the defined ROE. Most enterprise deployments start at L2–L3 and expand autonomy as confidence grows.

Rules of Engagement file

A structured ROE file defines scope, prohibited targets, attack categories, timing constraints, and escalation thresholds. SENTINEL enforces the ROE for every sub-agent action throughout the campaign. No action outside the file is taken.

Kill switch — abort in <5 seconds

Any campaign — in whole or in part — can be terminated in under 5 seconds. All active sub-agents receive the abort signal simultaneously. Sandbox containers are torn down, network activity stops, findings are snapshotted in place.

Pricing

Included in every Phalanxia tier.

AI penetration testing isn't a separate product or an add-on — it ships with the Phalanxia platform on every plan, billed as one subscription. The number of targets scales with your tier, from a single application on Recon to unlimited targets and frequency on Garrison.

Engagement scenarios

What a first engagement looks like.

The scenarios below are illustrative examples drawn from common engagement patterns — not claims of specific delivered results.

Fintech — Payments API assessment ILLUSTRATIVE

A Series B payments startup operating across multiple markets asks Phalanxia to assess their payment reconciliation API ahead of a SOC 2 audit. The autonomous agents discover an IDOR vulnerability allowing any authenticated merchant to access another merchant's transaction records. The finding is validated with proof-of-concept evidence and a code-level fix is generated within the same run. The development team deploys the patch within 24 hours.

  • Critical IDOR in reconciliation endpoint
  • 30+ findings surfaced in first engagement
  • Audit evidence package generated automatically
Healthcare — CI/CD-integrated continuous testing ILLUSTRATIVE

An electronic health records platform serving hundreds of clinics integrates Phalanxia into GitHub Actions to run an assessment on every release candidate. Within the first 90 days, the pipeline catches a broken access control flaw in the patient record export feature — a vulnerability that survived three prior manual pentests because it only manifested under specific role-combination conditions that automated tooling routinely tests.

  • Broken access control in export workflow
  • Flaws caught before reaching production
  • Findings missed by previous manual engagements
E-Commerce — Attack surface discovery run ILLUSTRATIVE

A high-volume e-commerce operator commissions an attack surface discovery run before a major platform migration. Phalanxia's discovery module maps dozens of previously undocumented API endpoints and identifies forgotten staging environments still connected to production databases. Jira tickets with remediation code are created automatically, and every critical finding is closed within 48 hours using the generated patches.

  • Undocumented API endpoints enumerated
  • Staging environments exposed to production
  • Auto-generated remediation code, Jira handoff
Engage

See what attackers see — before they do.

Deploy Phalanxia's AI pentest agents against your environment today. A 15-minute consultation gets you started. 30-day proof of concept available.