STRIATUM-CTF: A Protocol-Driven Agentic Framework for General-Purpose CTF Solving

A research team led by James Hugglestone and Samuel Jacob Chacko has developed STRIATUM-CTF, a novel agentic framework designed to tackle the complex, multi-step reasoning required for offensive cybersecurity. Built upon the Model Context Protocol (MCP), the framework standardizes interfaces for critical tools like system introspection, decompilation, and runtime debugging. This standardization allows the AI agent to maintain a coherent and persistent context window across long, stateful exploit development trajectories, a significant challenge for current Large Language Models (LLMs) that often struggle with such extended reasoning.

Unlike prior research confined to static benchmarks, the team validated STRIATUM-CTF in a live, competitive environment. In a university-hosted Capture-the-Flag (CTF) competition in late 2025, the system operated autonomously to identify and exploit vulnerabilities in real-time. The agent secured first place, decisively outperforming 21 competing human teams. Analysis of its decision logs showed that the MCP-based tool abstraction significantly reduced hallucination compared to naive prompting strategies, proving its effectiveness in dynamic problem-solving.

The success of STRIATUM-CTF suggests that standardized context protocols like MCP are a critical pathway toward building robust, autonomous cyber-reasoning systems. By providing a structured way for AI agents to interact with complex toolchains and maintain situational awareness, this approach moves beyond simple code generation to enable genuine tactical reasoning in security operations. The result is an AI that can not only understand a vulnerability but also orchestrate the sequential steps required to exploit it effectively in an unpredictable environment.