VANTAGE - Vulnerability Assessment aNd Testing Automation for Global Enhancement

Project coordinator

Diadikasia Business Consulting Symvouloi Epicheiriseon AE Diadikasia Business Consultants SA, GR

Project partners

HAXOR AI OU Haxor AI, EE
INFRA AI OÜ Infra, EE
European Cyber Security Organisation ECSO, BE
Yameveo, BG
Syddansk Universitet SDU, DK
Ngcybersecurity OU, EE
Ethniko Kentro Erevnas Kai Technologikis Anaptyxis Centre for Research and Technology Hellas Certh, GR
Universita degli Studi di Cagliari Unica, IT
Stackhouse S.R.L., IT
Fahmy Mohamed Black Hole Networks, NL
Institut Jožef Stefan JSI, SI
Akademska in raziskovalna mreža Slovenije, SI
Universitat Politecnica de Valencia UPV, ES
COGNITO S.R.L. Cognito, IT

Project duration

1 January 2026 – 31 December 2028 (36 months)

Summary

VANTAGE (Vulnerability Assessment aNd Testing Automation for Global Enhancement) will leverage a multi-agent AI architecture with advanced reasoning capabilities—often referred to as “chain-of-thought”—to transform security operations. By orchestrating multiple AI “specialists,” each offering unique perspectives, the system will rapidly correlate data from network devices, logs, and security tools for comprehensive incident investigation. A voice-enabled chatbot will streamline user interaction, facilitating real-time collaboration with analysts. Concurrently, automated vulnerability assessment and penetration testing (VAPT) will use self-updating tools to discover and exploit potential weaknesses, including zero-day vulnerabilities, ensuring a robust and proactive defense. Through its autonomous coordination, dynamic adaptation, and deep analytical reasoning, VANTAGE will minimize manual workloads while enhancing the speed and accuracy of cybersecurity responses for modern SOCs and CSIRTs.

The project incorporates robust security measures throughout its lifecycle, that will ensure data integrity, confidentiality, and availability. All project components will follow a strict “security by design” approach, minimizing vulnerabilities from the ground up and enforcing rigorous access controls. Data handling will comply with GDPR principles, and all sensitive data is encrypted both at rest and in transit using secure transmission protocols.

VANTAGE will apply encryption and authentication techniques to secure inter-agent communication and system entry points. All data exchanges will be protected using modern cryptographic algorithms, and only authenticated agents can operate within the environment. Continuous monitoring and observability tools will provide real-time behavioural tracking, anomaly detection, and automated alerting. Logs and performance analytics will ensure full transparency into agent actions, supporting fast incident response. Fail-safe mechanisms in place will detect and stop unintended or harmful decisions by AI models, escalating them to human analysts when necessary.

The VANTAGE platform will apply a secure software development lifecycle (SDLC), continuous penetration testing, and alignment with ISO/IEC 27001 standards. Multi-agentic AI systems will include built-in safeguards to prevent misuse or unauthorized actions, preserving operational security for CSIRTs, SOCs, and other stakeholders.

The project will adhere to the highest ethical standards in the development and deployment of AI technologies. VANTAGE ensures that all AI models, including multi-agentic systems, are designed to operate transparently and without bias, following EU guidelines for trustworthy AI. Special care will be taken to avoid discrimination or unethical decision-making in automated vulnerability assessments and incident investigations. Additionally, all pilots and data processing activities will be conducted in compliance with GDPR and the European Charter of Fundamental Rights, with explicit consent obtained for any personal data usage.

Project objectives are

Enhance Detection and Prevention: – by utilizing breakthroughs in key digital technologies – such as Artificial Intelligence generative and adversarial (for hacking, updating, incident investigation), Big Data Analytics (of events and vulnerabilities), Blockchain Technology (for information gathering), utilizing High Performance Computing for local LLM elaboration, and Software-Defined Networking (in digital twins) – to improve detection and prevention capabilities, efficiency, and scalability.
Facilitate Data Sharing and Compliance: – by developing solutions that facilitate data sharing and ensure regulatory compliance, thereby enhancing collaborative cybersecurity efforts across Europe.
Automate Threat Detection and Response: – by creating tools for automated threat detection and monitoring, log analysis, vulnerability scanning, and incident investigation to reduce the window of opportunity for attackers.
Protect Data Security and Privacy: – by enabling new possibilities to protect data security and privacy through innovative technologies.

Financing of the project

Programme:	Digital Europe Programme 2024 (DEP 2024), Call: DIGITAL-ECCC-2024-DEPLOY-CYBER-07-KEYTECH
Total eligible costs:	7.432.014,56 €
EU contribution:	4.988.530,73 €
EU co-financing rate:	50 % of the eligible costs of each beneficiary. For SI-CERT, an amount of 208.650,00 € is planned for a three-year period (50% amounts to 104.325,00 €). Cost covered are: staff costs, travel and accomodation, equipment and other goods and services.