Overview
GPT-5.5-Cyber is OpenAI's most permissive cybersecurity tier, opened in limited preview on May 7, 2026 as part of the Trusted Access for Cyber (TAC) program. It is built on the same underlying GPT-5.5 model that became OpenAI's flagship in late April 2026, but is tuned to issue fewer classifier-based refusals on authorized security tasks for a small set of vetted, invite-only defenders and approved partner organizations.
The model accepts text and image input and shares GPT-5.5's core specs: a roughly 1.05M-token context window, up to 128K output tokens, and a December 2025 knowledge cutoff. OpenAI is explicit that GPT-5.5-Cyber is 'not intended to deliver a major jump in raw cyber performance' over standard GPT-5.5 — the difference is permissiveness on dual-use security workflows, not raw capability. For most defenders, OpenAI recommends standard GPT-5.5 with Trusted Access for Cyber rather than the Cyber tier.
Access is gated. Individuals apply at chatgpt.com/cyber and enterprises via OpenAI's enterprise TAC form; the Cyber tier is the highest, invite-only level. Beginning June 1, 2026, individual members accessing OpenAI's most permissive cyber models must enable Advanced Account Security with phishing-resistant protections, or organizations can attest to phishing-resistant single sign-on. Safeguards still block malicious activity such as credential theft, stealth/persistence techniques, malware deployment, and exploitation of third-party systems.
| Released | 2026-05-07 |
|---|---|
| License | Proprietary |
| Weights | API only |
| Parameters | Undisclosed |
| Context | 1.05M |
| Max output | 128K |
| Architecture | Built on the same underlying GPT-5.5 model; the "Cyber" variant changes access policy (fewer classifier-based refusals on authorized security work), not the base model weights. OpenAI states it is not intended to deliver a major jump in raw cyber capability over GPT-5.5. |
| Knowledge cutoff | Dec 2025 |
| Modalities | Text, Vision |
| Status | Limited preview (invite-only) |
Benchmarks
Scores on a 0–100 scale (25-point gridlines); higher is better. Each benchmark links to its published source.
Pricing
| Input | $5.00 / 1M tokens |
|---|---|
| Cached input | $0.50 / 1M tokens |
| Output | $30.00 / 1M tokens |
OpenAI does not publish a separate price for the invite-only GPT-5.5-Cyber tier; these are the underlying GPT-5.5 API token rates. Access to the Cyber tier is granted through the Trusted Access for Cyber program, not the public price list.
Strengths
- Fewer automated refusals on authorized, dual-use security workflows for vetted defenders
- Vulnerability identification and triage, patch validation, and detection engineering
- Malware analysis and binary reverse engineering
- Authorized penetration testing, red teaming, and exploit proof-of-concept validation for coordinated disclosure
- Inherits GPT-5.5's frontier agentic reasoning, ~1.05M-token context, and tool use
Best for
- Reach for it when a vetted security team needs an authorized model that won't over-refuse on legitimate offensive testing (pentest, red teaming).
- Reach for it for high-severity vulnerability research, exploit validation, and patch validation under coordinated disclosure.
- Reach for it for malware analysis and binary reverse engineering inside an approved, monitored environment.
- Use standard GPT-5.5 with Trusted Access for Cyber instead for the vast majority of defensive workflows that do not need the most permissive tier.
How to access
| Provider | Model ID |
|---|---|
| OpenAI — Trusted Access for Cyber (invite-only) ↗ | GPT-5.5-Cyber |
FAQ
What is GPT-5.5-Cyber?
GPT-5.5-Cyber is OpenAI's most permissive cybersecurity tier, opened in limited preview on May 7, 2026 under the Trusted Access for Cyber program. It is built on the same underlying GPT-5.5 model but is tuned to issue fewer automated refusals on authorized security work — vulnerability research, malware analysis, reverse engineering, detection engineering, and authorized penetration testing — for vetted, invite-only defenders.
How is GPT-5.5-Cyber different from regular GPT-5.5?
The difference is access policy, not raw capability. OpenAI states GPT-5.5-Cyber is not intended to deliver a major jump in cyber performance over GPT-5.5; vetted users simply get lower classifier-based refusals on legitimate dual-use security tasks. OpenAI recommends standard GPT-5.5 with Trusted Access for Cyber for most defensive workflows and reserves the Cyber tier for a small set of approved partners.
How do you get access to GPT-5.5-Cyber?
Access is invite-only through OpenAI's Trusted Access for Cyber program. Individuals apply at chatgpt.com/cyber and enterprises via OpenAI's enterprise application form. Beginning June 1, 2026, individual members accessing OpenAI's most permissive cyber models must enable Advanced Account Security with phishing-resistant protections, or organizations can attest to phishing-resistant single sign-on.
How well does GPT-5.5 perform on cyber benchmarks?
The UK AI Security Institute reported that GPT-5.5 — the model underlying GPT-5.5-Cyber — achieved a 71.4% (±8.0%) average pass rate on its expert-level cyber tasks, ahead of Anthropic's Claude Mythos Preview (68.6%) and GPT-5.4 (52.4%), calling it possibly the strongest model it had tested on that measure. In one test it solved a reverse-engineering challenge in about 10 minutes for $1.73 in API usage that took a human expert roughly 12 hours.