Research April 20, 2026 · 4 min read

KENSAI Research: MARS² and H-TechniqueRAG Show the Real Upgrade Path for Agentic Security

Today’s research cut is simple: if agentic security systems keep failing under pressure, the fix is not another wrapper. It is better search across branches, better credit assignment across long tool paths, and retrieval that understands cyber evidence instead of generic text similarity.


What changed in today’s research window

Today’s strongest papers were not generic AI hype. MARS² matters because it treats multi-agent search as a tree that needs explicit branch exploration and path-level credit assignment. H-TechniqueRAG matters because cyber retrieval breaks when evidence is flattened into one bag of chunks and ranked like ordinary text.

That pair points at a useful product direction for KENSAI. Agentic security needs two upgrades at once: better search over possible action paths, and better retrieval over structured security evidence. Without both, systems look busy but stay shallow.

1) MARS² is a better answer to long tool trajectories

MARS² is compelling because it stops pretending one agent should discover every good path by itself. It treats problem-solving as shared tree search, where multiple agents can explore alternatives and where reward is assigned across the actual path that produced a useful result.

That matters in security work because the best move often appears only after several mediocre moves. Recon, validation, and exploitation all have branching states. If the system only rewards the final answer and ignores the path, it learns the wrong lesson. Path-level credit assignment is how you stop training a tool-using agent to get lucky once instead of getting good repeatedly.

2) H-TechniqueRAG fixes a real cyber retrieval problem

H-TechniqueRAG is interesting because cyber evidence is naturally hierarchical. ATT&CK techniques, procedures, host artifacts, campaign notes, and detection guidance do not live at one flat level. When retrieval systems ignore that structure, they return vaguely related text instead of the evidence chain an analyst actually needs.

For KENSAI, the lesson is blunt: retrieval quality in security depends on preserving relationships between technique, target, evidence, and action. Better chunking alone is not enough. The retrieval layer has to know that a good answer in cyber is usually a linked chain, not a single paragraph.

3) The combined product implication is stronger than either paper alone

Taken together, these papers suggest a real upgrade path for agentic security systems. Search should branch more honestly across possible tool paths. Reward should be assigned across trajectories, not only terminal outputs. Retrieval should fetch evidence in a cyber-aware hierarchy instead of flattening everything into semantic mush.

That is a better roadmap than adding one more agent shell or dashboard layer. KENSAI gets stronger when it can explore more than one plausible route, learn which paths actually paid off, and retrieve evidence in a form that supports real security judgment.

What KENSAI should do next

The immediate move is practical. Build one eval that tests path-level reward and branch exploration on a live tool task, and build one retrieval eval that scores ATT&CK-style evidence precision instead of generic answer fluency.

If those two loops improve, the rest of the stack gets less theatrical fast. Better search means fewer brittle agent runs. Better retrieval means fewer plausible-sounding but wrong answers. That is the kind of research integration that changes product behavior, not just slides.

Build agentic security systems that learn on the path, not only at the end

KENSAI turns research signals into practical security execution, from better retrieval and orchestration to proof-first operational surfaces.

Explore KENSAI

KENSAI — AI-Powered Security Intelligence