%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Today, as artificial intelligence technology is developing rapidly, Microsoft once again has shown its innovative power to us. On May 13th, Microsoft's own code security team officially released a multi-model agent scanning framework called MDASH. This new security system not only leads in technology but also demonstrates remarkable vulnerability identification capabilities in practical applications, especially standing out when compared with the well-known GPT-5.5 and Anthropic's Mythos models.
The uniqueness of MDASH lies in the fact that it does not rely on a single AI model, but instead adopts a multi-agent collaboration strategy. Microsoft's team integrated over 100 different AI agents in this framework, each responsible for different tasks, covering multiple stages from code preparation to vulnerability scanning and result verification. This way, MDASH can use the most powerful model for core reasoning tasks, while for scenarios requiring rapid processing of massive code, it leverages lightweight models that respond quickly.
In the latest CyberGym public benchmark test, MDASH not only successfully identified 16 previously unknown vulnerabilities, including four high-risk remote code execution vulnerabilities, but also achieved a perfect 100% identification rate in private tests facing 21 deliberately implanted vulnerabilities, with zero false positives throughout the process. This achievement undoubtedly provides strong support for Microsoft's internal security protection work.
Additionally, MDASH also performed exceptionally well in retrospective testing of historical vulnerabilities, such as achieving a 96% recovery rate for clfs.sys's vulnerabilities over the past five years, and a 100% recovery rate for tcpip.sys. Such high efficiency and accuracy have greatly boosted Microsoft's confidence in product security enhancement.
Currently, MDASH has started assisting Microsoft's internal engineering teams in product security enhancement, and is also offering internal preview testing to limited customers. These measures mark another important breakthrough for Microsoft in the field of software security, and in the future, MDASH will undoubtedly become an indispensable tool in the field of security protection.
Key Points:
🔍 MDASH is Microsoft's newly released multi-model agent scanning framework, surpassing the GPT-5.5 and Mythos models.
⚡ The system uses over 100 AI agents working together, accurately covering stages such as code preparation and vulnerability scanning.