NeFut Logo NeFut
Admin Login

[CS.AI] Decoding Determinants and Limits of LLM Security Tool Orchestration

Published at: 2026-07-08 22:00 Last updated: 2026-07-09 03:24
#AI #Machine Learning #Open Source

Abstract

Large language model agents driving security tool suites over the Model Context Protocol are increasingly common. However, the factors that bound their capability remain poorly characterized: how much depends on the model versus the client that drives it, whether constraining the agent to the orchestrator's own tools helps, and where capability is limited by reasoning rather than by missing tools.

Using HexStrikeAI, an open-source orchestrator that exposes 150+ tools, as a testbed, we follow a methodology that evaluates the system, diagnoses its failures, and applies targeted improvements. We run 86 picoCTF challenges across seven categories and three difficulty tiers, under three tool-access regimes and three model/client configurations (774 trials).

We then apply corrections to existing tools, agent-behavior changes, and eleven new capability tools, and re-run the previously-unsuccessful trials. The diagnosis isolates the driving client as a first-order factor for a fixed model (a 2.1 gap between two DeepSeek clients) and a monotonic difficulty gradient, with the largest gains in the mid tier. The overall solve rate rises from 55.4% to 72.0%, and every configuration improves significantly (paired McNemar p < 0.001).

Blogger's Review: This study delves into the performance of large language models in security tool orchestration, highlighting the significance of the client in model capability. The systematic improvements led to a remarkable increase in the model's problem-solving ability, providing valuable insights for future security applications.

Original Source: https://arxiv.org/abs/2607.02873

[h] Back to Home