We gave AI agents access to Ghidra and tasked them with finding hidden backdoors in servers - working solely from binaries, without any access to source code.

Researchers deployed AI agents with access to the Ghidra reverse-engineering tool to autonomously audit server binaries for hidden backdoors. The agents worked solely from compiled binaries without any source code, demonstrating a novel application of AI for cybersecurity. This approach could automate the detection of sophisticated, intentionally hidden vulnerabilities that traditional tools might miss, potentially scaling security audits for massive codebases.