As cyber threats continue to evolve alongside rapid AI-driven development, organizations are increasingly seeking more dynamic and continuous security validation. In response to this growing demand, XBOW, a leader in autonomous offensive security, has announced a strategic collaboration with Microsoft. Through this partnership, XBOW is integrating its continuous penetration testing platform into Microsoft Security Copilot and the Microsoft Sentinel data lake, marking a significant advancement in modern security operations.
Notably, the integration, currently available as a public preview at RSAC™ 2026, embeds autonomous offensive security directly into Microsoft’s ecosystem. As a result, global enterprises can now seamlessly discover, validate, and prioritize vulnerabilities without leaving their existing Microsoft security environments. This streamlined approach not only enhances efficiency but also ensures that security teams remain within familiar workflows.
“Microsoft Security customers can now deploy our autonomous offensive capabilities directly within the tools they’re already using every day,” said Oege de Moor, CEO, XBOW. “This isn’t an incremental workflow improvement. It fundamentally changes how security operations teams detect real-world risk.”
Traditionally, penetration testing has remained a manual and periodic process, often disconnected from real-time security operations. Consequently, organizations have struggled with limited testing coverage, delayed findings, and a lack of actionable insights within Security Operations Center (SOC) workflows. Moreover, security teams have lacked validated exploit paths, making it difficult to effectively prioritize and respond to threats.
However, this new integration fundamentally changes that dynamic. By creating a continuous feedback loop between offensive and defensive security, XBOW and Microsoft are effectively bridging the long-standing gap between application security (AppSec) and security operations (SecOps). In this model, penetration testing intelligence becomes a real-time input for detection and response, while operational telemetry simultaneously informs future testing priorities.
Furthermore, the integration introduces an end-to-end workflow within Microsoft Security. Using guided inputs and contextual exposure data, teams can initiate and manage XBOW assessments directly through Microsoft Security Copilot. At the same time, findings automatically flow into the Microsoft Sentinel data lake, enabling deeper correlation with existing security telemetry.
Built collaboratively with Microsoft, the solution leverages the strengths of both platforms. XBOW delivers its autonomous penetration testing engine along with validated findings, while Microsoft Security Copilot and Sentinel align these insights directly into defensive workflows. This unified approach allows organizations to act faster and more decisively against emerging threats.
“In the face of an increasingly dynamic threat landscape, security teams need continuous validation of their defenses,” said Shawn Bice, Corporate Vice President, Security Platform & AI at Microsoft. “By integrating XBOW’s autonomous penetration testing into Microsoft Security Copilot and Microsoft Sentinel data lake, we’re helping our customers across industries connect offensive insights directly into their existing workflows.”
In addition, the public preview includes a comprehensive set of capabilities that span the entire penetration testing lifecycle. These include the XBOW Pentest Manager Agent, which enables teams to initiate and manage tests directly within Security Copilot. The XBOW Sentinel Connector ingests assets and validated findings into custom tables within the Sentinel data lake, facilitating seamless data correlation. Meanwhile, the XBOW Pentest Analysis Agent evaluates test results alongside telemetry data to identify detected threats, missed activities, and potential gaps in detection coverage.
Looking ahead, the integration will be accessible through the Microsoft Security Store, Microsoft Marketplace, and the Microsoft Security Copilot agent gallery. Ultimately, this collaboration positions XBOW and Microsoft at the forefront of transforming cybersecurity operations, enabling enterprises to move from reactive defense to continuous, intelligence-driven security validation.
Recommended Cyber News :
- Cohesity Integrates Sophos-Powered Malware Scanning to Strengthen Data Cloud Cyber Resilience
- VIPRE Integrates AI Email Security with Microsoft Defender
- Commvault Integrates CloudSEK to Strengthen Identity Threat Detection
To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com
