LaunchSafe Introduces Mako: Self-Evolving AI Agent That Achieves 100% Success Rate on Autonomous Web Exploitation Benchmark
Key Takeaways
- ▸Mako achieves 100% success rate on 104 diverse web exploitation challenges spanning 26 vulnerability classes, demonstrating fully autonomous, machine-speed exploitation at scale
- ▸SE-AOS represents a new paradigm where AI agents can autonomously observe failures, synthesize new capabilities in real-time, and self-improve through a gated evolution loop
- ▸The research validates that 'capability, not reasoning, is scarce' in autonomous exploitation—once a capability exists, difficulty collapses
Summary
LaunchSafe has unveiled Mako, the first instance of a Self-Evolving Agentic Operating System (SE-AOS), a new class of AI agent that represents a fundamental shift in autonomous security research. Unlike traditional agents that rely on fixed reasoning, Mako treats its exploit capabilities as a mutable, versioned kernel that it extends at runtime, observing its own failures, synthesizing new capabilities, and hot-loading improvements back into itself. The system operates within a gated self-evolution loop that proposes, sandboxes, and commits improvements to its own agents when fitness metrics improve.
On the public XBOW validation benchmarks—a rigorous testing suite comprising 104 containerized CTF-style web applications spanning 26 vulnerability classes across three difficulty tiers—Mako achieved complete success coverage, driving every single target to emit a cryptographically fresh, per-build flag under a verification regime designed to make fabricated or memorized results impossible. The research validates a central thesis: in autonomous exploitation, capability rather than reasoning is the scarce resource; once a capability exists and is discoverable, the difficulty of exploitation collapses.
The authors deliberately withheld operational results, payloads, exploit chains, and tool source code, citing the dual-use research concerns inherent in systems that reduce full-spectrum web exploitation to a repeatable, machine-speed pipeline. This measured approach to disclosure—publishing the scientific innovation while withholding operational weaponization—acknowledges the risks posed by autonomous exploitation capabilities in adversarial hands.
- Authors adopt responsible disclosure practices by publishing breakthrough science while withholding operational payloads and exploit chains due to dual-use research concerns
- Mako establishes LaunchSafe's platform for continuous offensive security testing and agent-driven security research
Editorial Opinion
Mako represents a watershed moment in autonomous security research, demonstrating that AI agents can now evolve their own exploitation capabilities faster than traditional human-driven security teams. The authors' explicit decision to withhold operational details—acknowledging dual-use risks—sets a thoughtful precedent for responsible disclosure, yet it also highlights a growing asymmetry: the defensive security community must now innovate faster than self-improving offensive agents. This work underscores that the era of fully autonomous, machine-speed web exploitation is no longer theoretical speculation but an established scientific reality.


