Claude for Security | Claude by Anthropic

3 min read Original article ↗

Defend at the pace threats now demand

Claude helps security teams investigate threats, validate findings, and resolve issues faster.

#1

on CyberGym benchmarks for real-world vulnerability discovery

Opus 4.6

500+

high-severity vulnerabilities found that survived decades of scrutiny and automated analysis

Opus 4.6

Millions

of developers are building and defending with Claude

Claude traces data flows across files, understands framework conventions, and catches logic flaws that rule-based scanners miss. When a vulnerability spans three files, Claude reads all three.

Claude scans, validates, triages, and drafts. Your team decides whether to merge a patch, escalate an incident, or act on a finding. Every decision stays with your team.

Get started quickly with Claude Security or build custom security agents with the Agent SDK. Same intelligence, applied wherever your team needs it.

Claude runs across Anthropic's own detection, investigation, and remediation work. Defense-first design, responsible disclosure, and what we learn protecting a frontier AI company all shape what we build.

CogentCogent

reduction in time critical vulnerabilities remain open

GitLabGitLab

productivity gains across DevSecOps workflows

Vulnerability detection and remediation

Find vulnerabilities and suggested fixes in one flow. Claude traces data flows across your full codebase, determines if a finding is exploitable, drafts a patch that follows your codebase's patterns, and opens a PR for your team to review.

  • Catches logic flaws and cross-file data flow issues that pattern-matching tools miss
  • Attempts to validate that a finding is exploitable before raising the flag
  • Runs on Claude Code, making secure code more accessible

IOC enrichment report

Threat intel enrichment

Cut manual pivot work per IOC down to minutes. Claude takes a raw indicator and queries a combination of intelligence sources, then connects infrastructure patterns to known threat groups and maps behaviors to ATT&CK techniques.

  • Reasons across sources instead of matching keywords
  • Decides which sources to query and follows up on what it finds
  • Structured output ready for STIX/TAXII, Splunk, or your SOAR

Code review

Code review

Specialized agents examine every pull request in the context of your full codebase, catching logic errors, security vulnerabilities, broken edge cases, and subtle regressions. Findings post as inline comments with severity tags, and a verification step filters false positives before anything reaches your engineers.

  • Analyzes the diff and surrounding code in parallel
  • Tune what Claude flags with a REVIEW.md file in your repo
  • Comments only: doesn't approve or block the PR, so existing workflows stay intact

Cyber defense powered by Claude Opus, available through our partners

Detection, validation, and patching in one supervised flow. Claude analyzes a finding and determines if it’s exploitable before flagging it, drafts a fix that follows your codebase's patterns, and opens the PR for your team to approve.

Claude reasoning

Build security products

Integrate Claude's reasoning into your security platform or product through the API and Agent SDK.

  • Connect Claude to your scanning, alerting, and remediation workflows through MCP
  • Spawn specialized subagents for parallel tasks like triage, severity scoring, and patch generation
  • Deploy in sandboxed containers with network controls, credential isolation, and audit logging built into the SDK

LogoLogo

“Claude consistently performed best on complex, agentic workflows, especially multi-step investigations requiring policy adherence and sustained reasoning across multiple tools.”

Anirudh Ravula, Head of AI

LogoLogo

“The security industry has always moved too slowly compared to attackers. AI fundamentally changes the equation—it's like giving defenders a jetpack when they've been limited to walking.”

Martin Holste, CTO of Cloud & AI

LogoLogo

"Anthropic prioritized safety and security a lot more than other LLMs... As the largest cybersecurity company, that's a big deal for us."

Gunjan Patel, Director of Engineering

Making frontier cybersecurity capabilities available to defenders

Threat intelligence enrichment agent

Partnering with Mozilla to improve Firefox’s security

Disrupting the first AI-orchestrated cyberattack (GTG-1002)

Evaluating and mitigating the growing risk of LLM-discovered 0-days

Experimenting with AI to defend critical infrastructure