Show HN: We post-trained a model that pen tests instead of refusing
A specialized AI-powered cybersecurity tool for SMEs and mid-market companies, offering un-guard-railed pen-testing capabilities, unlike general-purpose LLMs or enterprise-gated solutions. It provides concrete, verifiable vulnerability findings through a CLI with local code scanning and sandboxed live system exploitation.
View Origin Link
Product Positioning & Context
AI Executive Synthesis
A specialized AI-powered cybersecurity tool for SMEs and mid-market companies, offering un-guard-railed pen-testing capabilities, unlike general-purpose LLMs or enterprise-gated solutions. It provides concrete, verifiable vulnerability findings through a CLI with local code scanning and sandboxed live system exploitation.
This product directly addresses a critical market gap: accessible, un-guard-railed AI-driven penetration testing for SMEs and mid-market. Current LLMs are either restricted or too generalized, leaving these segments vulnerable. By post-training on CTF data, the solution offers practical, exploit-driven vulnerability identification, moving beyond "vibes-based findings" to verifiable exploits. The CLI-based, local code scanning with context sent over TLS to an inference API balances security with utility. The "Pen test" mode, though gated, promises active adversarial testing in sandboxed environments, a significant differentiator. This targets a high-value problem: proactive security for underserved markets. The pricing model (free scan up to 2M tokens, then paid) lowers adoption barriers. The inherent safety concerns of such a powerful tool are acknowledged, indicating a strategic approach to responsible deployment.
Anthropic and OpenAI's publicly available models are explicitly guard-railed so that they refuse offensive tasks. And their cyber-focussed models are gated for enterprises. This leaves SMEs and mid market open to major vulnerabilities.AI can be used as both an adversarial and defensive tool in the world of cyber. A worst case outcome is if only the adversaries have access.Meanwhile, most existing AI cyber tools are just wrappers. The problem is that they still have all the guardrails on from the foundation model where they will inherit its refusals.For this project we've post-trained a specific model on a decade of capture-the-flag contests. This won't be made available to anyone and everyone, but we do believe that responsible SMEs and midmarket companies also need access to these tools in order to identify key vulnerabilities in their systems; not just enterprises.We have developed two modes that run over a CLI:• Security scan: a read-only audit of your local codebase for vulnerabilities. It only reports what it can tie to a specific file and line, so you're not wading through vibes-based findings.• Pen test: an active adversarial mode that will try to break a live system in a sandboxed environment. It proves each vulnerability by running the exploit and showing the request it sent and the response your code gave back, not a confidence score. Currently gated.To show what the scan does, we pointed it at Bank of Anthos and it found an integer overflow in the transfer path: amount is an int, and amount + fee can overflow negative, so the balance check passes and you move funds you don't have. Plus the usual auth and secrets issues. (Bank of Anthos is Google's open-source bank. It's a known app and some of it is intentionally weak, which is the point: you can clone it and re-run the scan yourself instead of trusting a screenshot)The base model is a Kimi K2.6 (open weights). We didn't pretrain from scratch. We post-trained it ourselves, SFT on CTF writeups, then RL with verifiable rewards against actual exploit checks.How the harness works:Along with the model we built the harness to support this. The harness runs on a multi-agent swarm: an orchestrator splits the job across subagents running in parallel, each owning a slice, then synthesising one report.The CLI is a local binary (brew/curl). It reads your code locally, then sends context to our inference API over TLS tcpdump it and you'll see exactly what leaves and where. Install is free; and you can run a scan for free up to 2m tokens, then need to pay for tokens beyond this.For full disclosure this is a product part of Cosine (YC W23)Up for debate: tool safety, e.g. domain verification is one method that proves control but not necessarily permission. How would you gate a pen-test tool given that?
post-trained model
pen tests
guard-railed
offensive tasks
cyber-focussed models
SMEs
mid market
vulnerabilities
Related Ecosystem & Alternatives
Discover adjacent products, open-source repositories, and developer tools sharing similar technical architecture.
Deep-Dive FAQs
What is We post-trained a model that pen tests instead of refusing?
We post-trained a model that pen tests instead of refusing is analyzed by our AI as: A specialized AI-powered cybersecurity tool for SMEs and mid-market companies, offering un-guard-railed pen-testing capabilities, unlike general-purpose LLMs or enterprise-gated solutions. It provides concrete, verifiable vulnerability findings through a CLI with local code scanning and sandboxed live system exploitation.. It focuses on This product directly addresses a critical market gap: accessible, un-guard-railed AI-driven penetration testing for SMEs and mid-market. Current L...
Where did We post-trained a model that pen tests instead of refusing originate?
Data for We post-trained a model that pen tests instead of refusing was aggregated directly from the Hacker News community ecosystem, representing raw developer and early-adopter sentiment.
When was We post-trained a model that pen tests instead of refusing publicly launched?
The initial public indexing or launch date for We post-trained a model that pen tests instead of refusing within our tracked developer communities was recorded on June 21, 2026.
How popular is We post-trained a model that pen tests instead of refusing?
We post-trained a model that pen tests instead of refusing has achieved measurable traction, logging over 77 traction score and facilitating 37 recorded discussions or engagements.
Which technical categories define We post-trained a model that pen tests instead of refusing?
Based on metadata extraction, We post-trained a model that pen tests instead of refusing is categorized under topics such as: post-trained model, pen tests, guard-railed, offensive tasks.
What are some commercial alternatives to We post-trained a model that pen tests instead of refusing?
Our semantic intelligence engine identifies potential commercial alternatives in the SaaS space, such as In Parallel MCP, which offers overlapping value propositions.
How does the creator describe We post-trained a model that pen tests instead of refusing?
The original author or development team describes the product as follows: "Anthropic and OpenAI's publicly available models are explicitly guard-railed so that they refuse offensive tasks. And their cyber-focussed models are gated for enterprises. This leaves SMEs and mid..."
Community Voice & Feedback
Discovery Source

Hacker News
Aggregated via automated community intelligence tracking.
Tech Stack Dependencies
No direct open-source NPM package mentions detected in the product documentation.
Media Tractions & Mentions
No mainstream media stories specifically mentioning this product name have been intercepted yet.
Deep Research & Science
No direct peer-reviewed scientific literature matched with this product's architecture.