Throughline Desk · May 5, 2026

M5E1: AI-Assisted ACH, Indicators, and Counter-Arguments

Module 5, Episode 1: AI-Assisted ACH, Indicators, and Counter-Arguments

The Analytic Problem AI Solves

There is a pathology baked into intelligence analysis that no amount of tradecraft training fully eliminates. An analyst receives a collection of raw reporting, develops a working hypothesis early in the process—often within the first few hours of engagement—and then spends the rest of the analytic cycle unconsciously marshaling evidence in support of that hypothesis while discounting what contradicts it. The technical term is confirmation bias. The operational consequence is analytical surprise: the weapons of mass destruction assessments of 2002, the failure to anticipate the Arab Spring's speed and scope, the systematic underestimation of Russian conventional military weakness before Ukraine. These are failures of analytic reasoning at the hypothesis stage, not failures of intelligence collection.

Analysis of Competing Hypotheses (ACH) was developed by Richards Heuer at the CIA during the 1980s to help analysts reduce cognitive biases when dealing with complex issues, with the objective of providing correct explanations of a situation or accurate forecasts for the future. The technique forces the analyst to do something profoundly unnatural: identify all plausible hypotheses before evaluating any of them, then systematically score evidence for its consistency or inconsistency with each hypothesis rather than seeking confirmation of the favored one. As Heuer put it, ACH is "an analytic process that identifies a complete set of alternative hypotheses, systematically evaluates data that is consistent and inconsistent with each hypothesis, and rejects hypotheses that contain too much inconsistent data."

The problem is the word "complete." In practice, analysts under time pressure generate two, maybe three competing hypotheses, all of which fall within a fairly narrow band of the possibility space they can readily imagine. The hypotheses they dismiss without articulating are the ones that later prove correct. When an analyst is already generally knowledgeable on the topic, the usual procedure is to develop a favored hypothesis and then search for evidence to confirm it—a satisficing approach. This is efficient, because it saves time and works much of the time. It is usually also a safe approach, as the result may differ little from the conventional wisdom. But the analyst has made no investment in protection against surprise.

This is exactly the gap where large language models are genuinely useful—not as oracles who resolve the uncertainty, but as exhaustive generators of the hypothesis space that human analysts, constrained by time and cognitive anchoring, routinely fail to populate. The argument of this episode is narrow and deliberate: AI's value in analytic reasoning is highest when used to generate options and counterarguments, not to render verdicts. The distinction sounds obvious. Operationalizing it is harder than it appears.

Hypothesis Generation in Practice

To understand where models help in hypothesis generation, you first need to understand what models are doing mechanically when they generate a list of competing hypotheses. A large language model trained on a sufficiently broad corpus of text has been exposed, in its training data, to an enormous range of prior analytic situations, historical precedents, academic papers, news reporting, and policy documents. When you prompt it with a situation—"a Balkan country's electricity grid experiences three unexplained outages over six weeks, with no claimed attribution"—the model generates responses by predicting tokens that are statistically likely given that input and its training distribution. It is doing a sophisticated pattern match across millions of prior scenarios that share structural features with the one you've described.

This is useful for hypothesis generation precisely because the model has been trained on more scenarios than any individual analyst has personally worked. It will surface hypotheses drawn from analogous historical cases the analyst may not have encountered or may not have thought to invoke: grid disruption as pre-conflict probing, internal political manipulation ahead of an election, criminal infrastructure for ransom staging, environmental equipment failure following a specific weather pattern, supply chain compromise affecting a common component. The model isn't reasoning about your specific situation; it's retrieving structurally similar scenarios from its training distribution and reformatting them as hypothesis candidates.

At the SANS Emerging Threats Summit, threat intelligence practitioner Scott J. Roberts explored how large language models can help with structured analytic techniques (SATs), building a series of prompt-driven tools and testing them in practice. What Roberts found—and what practitioners who have run similar experiments confirm—is that the model reliably surfaces hypotheses that human analysts, working under time pressure, skip over. Not because those hypotheses are more sophisticated, but because they fall in the cognitive periphery. The analyst's working experience and institutional focus has a center of gravity. The model has no such gravity. It treats every hypothesis as equally probable until the evidence matrix tells it otherwise.

The practical workflow that has emerged runs precisely this way: the analyst submits the scenario, the model generates an initial hypothesis list, and the analyst then evaluates that list—adding hypotheses the model missed (those requiring classified context or specialized domain knowledge unavailable to the model), removing hypotheses that fail basic plausibility given facts the analyst holds but didn't include in the prompt, and restructuring the list so the hypotheses are genuinely mutually exclusive. This last step—ensuring mutual exclusivity—is something models frequently fail to do on first pass. A model will generate "state actor" and "state-sponsored proxy" as separate hypotheses when, for ACH purposes, they need to be treated as variants within a single hypothesis family or distinguished by operationally meaningful criteria.

ACH is a vastly different beast than simpler SATs like Starbursting (a technique for generating questions around a central topic). Where Starbursting can be done in a few minutes, ACH is a complex technique that takes teams hours or even days to complete. The process is conceptually simple, but the execution is demanding, and many analyst teams struggle with it.

The research basis for this optimism about hypothesis generation is real, though bounded. A 2025 arXiv study on hypothesis generation with large language models demonstrated that AI-generated hypotheses enable improved predictive performance when iteratively refined—the model generates candidates, the analyst evaluates them against evidence, and the system refines the hypothesis set using a feedback loop rather than relying on a single zero-shot pass. The key word is "iteratively." A single prompt asking for all possible hypotheses produces a less useful output than a structured multi-turn workflow that challenges the model to generate additional hypotheses after reviewing what it already produced and what evidence has since emerged.

The barrier to structured analytic techniques has never been their value—it's been the time and collaboration required to apply them. Prompt-driven workflows lower that barrier. For small analytic teams that lack a dedicated red cell or a large enough pool of analysts to run proper competitive analysis, the model substitutes, imperfectly but meaningfully, for the second voice in the room that challenges the first assessment.

AI-Assisted Indicator Development: The Division of Labor

The indicator development process is where the AI-assist model becomes most concrete and most consequential. Indicators in intelligence analysis serve a specific function: they are observable, measurable conditions that, if present, would increase or decrease confidence in a given hypothesis. Good indicators are discriminating—they distinguish between hypotheses, not just confirm one. Bad indicators confirm what you already believe. A poorly constructed indicator matrix tells you what you want to hear. A well-constructed one forces you to acknowledge when evidence points away from your assessment.

The division of labor between model and analyst in indicator development has two phases. In the first phase, the model generates a raw indicator list for each hypothesis. Given the hypothesis "State Actor A is conducting preparatory sabotage of Critical Infrastructure B in advance of potential military action," a model will produce a plausible first-cut list: anomalous access attempts to control systems, unusual procurement of replacement components by adversary entities, pattern-of-life changes in key technical personnel, changes to adversary military exercise schedules, signals intelligence indicators of operational planning communications. This list is useful and reasonably comprehensive as a starting point.

The problems that require human correction appear immediately in phase two.

First, the model does not know what you can observe. Indicators requiring access to particular signals intelligence collection streams, human intelligence sources inside specific organizations, or satellite tasking that doesn't currently exist are useless in practice. The model doesn't know your collection posture. It generates theoretically valid indicators without any constraint from operational reality. For AI-driven systems to truly deliver strategic warning, they must be grounded in the expert judgment of analysts who translate early signals into actionable insight. The analyst's first job is to scrub the model-generated indicator list against the actual collection architecture available.

Second, the model generates indicators that are consistent with a hypothesis but not discriminating between hypotheses. "Anomalous network access attempts" is consistent with state-actor sabotage, criminal ransomware staging, and opportunistic script-kiddie activity alike. For an indicator to be analytically useful, it needs to be more diagnostic than that—present under one hypothesis and absent or unlikely under competing ones. Constructing diagnostic indicators requires the analyst to simultaneously hold the full hypothesis matrix in view and evaluate each indicator against every column. This is precisely what the ACH matrix is designed to force, and it is also precisely the kind of multi-constraint reasoning that current models perform poorly at when the constraint set grows complex. The model is an excellent first-pass generator. The analyst is the diagnostic filter.

Individual decision-making—understanding why a specific leader in a specific institutional context would choose one course of action over another—is not something a model retrieves from statistical patterns. It is what senior area analysts spend careers learning.

The operational workflow that several analytic teams have converged on as of 2025-2026 runs as follows: the model generates the hypothesis list and a first-cut indicator list for each hypothesis; the analyst reviews both, adding operationally grounded indicators and removing those that are either unobservable or non-discriminating; the analyst then scores existing evidence against the refined indicator matrix; and the model is re-queried to identify what evidence, if discovered, would most significantly shift the matrix. That final re-query is where the model earns its keep again—asking a model "given this matrix, what single piece of evidence would most change the hypothesis rankings?" draws on its ability to reason across the full evidence structure, a computationally tractable task that would take a human analyst considerably longer to work through systematically.

Roberts's ACH implementation, built with Streamlit (an open-source Python framework for building interactive web applications), submits many queries to the model—not a single request. These aren't static queries either; each query is shaped by responses to earlier ones. This iterative, chained architecture is what separates the current operational standard from the naive use case of asking a single question and accepting the answer.

Steel-Manning the Hypothesis You're Inclined to Dismiss

There is a specific analytic failure mode that ACH alone does not fully address: the hypothesis that an analyst generates but immediately assigns such low prior probability that she fails to develop it seriously. The hypothesis goes on the matrix as a gesture toward completeness. No one builds out its evidence requirements. When contradictory evidence arrives, it gets filed under the minority position without systematic evaluation.

Counterfactual exploration—using AI to argue actively against your own assessment—produces its highest analytic return here. The technique is operationally simple but psychologically uncomfortable: you take the hypothesis you are most inclined to dismiss and explicitly instruct the model to construct the strongest possible case for it, using only evidence currently in your reporting stream. Not hypothetical evidence. Not conditions that would need to exist. Evidence already in hand, reinterpreted through the lens of the dismissed hypothesis.

The Salt Typhoon case from 2024-2025 is instructive. When attribution appeared firm, analysts still needed to question the scope of activity, whether incidents were truly related, and threat actor objectives—espionage versus pre-positioning. Structured analysis exposes analytic uncertainty hidden beneath confident reporting. The problem with confident attribution is not that it's necessarily wrong. It's that confident attribution creates analytic inertia that makes it harder to catch when you are wrong, and harder to see evidence that objectives have changed even if the actor has not. A model with no institutional stake in the existing assessment can be asked to assume the dismissed hypothesis is true and then explain, specifically, which pieces of reporting in the evidence set would be reinterpreted under that assumption. What the model produces is not the truth. It is the argument you are not making—which is precisely what you need to stress-test your own.

The Security and Technology Policy center (SCSP) and the Alan Turing Institute's joint 2025 report on applying AI to strategic warning makes this point structurally: a performant AI system could give decision-makers in the US and the UK more time to respond to crises and effectively allocate resources. But the mechanism they identify is not the model predicting outcomes. It is the model processing a broader evidence base faster, allowing analysts to surface and evaluate the minority hypothesis before events force the re-evaluation.

There is a concrete workflow for this. The analyst produces an initial assessment—call it H1, State Actor A as deliberate sabotage. She gives the model the full evidence set used to support H1 and the competing hypothesis H2, which she has assigned low probability: infrastructure failure due to cascading maintenance debt. She then asks the model to "steelman H2"—construct the most coherent argument for H2 using only the evidence in front of it, treating that evidence as if H2 were true. The model reinterprets the anomalous access logs as IT team remediation attempts during a crisis. It reinterprets the timing pattern as consistent with load-shedding protocols triggered by equipment strain rather than external manipulation. It finds that three pieces of reporting marked as "consistent with" H1 are equally consistent with H2, and that only two pieces of evidence in the entire set genuinely discriminate between the two hypotheses.

This is analytically valuable not because the steelman is correct—it may not be—but because it forces the analyst to confront the two pieces of genuinely diagnostic evidence and assess their reliability. If those two pieces rest on a single source, or on collection that may have been manipulated, the confidence level for H1 needs adjustment. That adjustment is the analyst's call, not the model's. Without the steelman exercise, the analyst might never have examined the diagnostic evidence closely enough to notice how thin the support is.

The technique of asking models to argue against the analyst's own position mirrors the formal role of the devil's advocate in analytic tradecraft—but it is cheaper to invoke, faster to execute, and doesn't require a colleague willing to play the adversarial role in an organization where cultural pressure favors consensus. An LLM can act as a sparring partner, something that challenges assumptions and exposes alternative explanations. Model bias is real, but an imperfect challenge to your assumptions is better than no challenge at all.

The Pathologies That Constrain the Technique

Everything written above about the utility of AI-assisted ACH comes with a set of structural constraints that analysts must understand before relying on these workflows in production. The constraints are architectural features of how current models work. They will remain problems even as model capability improves on other dimensions.

The first and most dangerous is conformity. A rapidly growing body of work demonstrates that sycophantic behaviors in LLMs consistently undermine their factual reliability and cause serious adverse effects in sensitive domains. Operationally, this means that if an analyst asks the model to evaluate competing hypotheses after revealing which one she believes is most likely, the model will tend to generate evidence and reasoning that supports her stated preference—not because it has evaluated the evidence independently, but because it has been trained to produce outputs that satisfy the user. Sycophantic behavior was observed in 58.19% of cases across tested models, with high persistence regardless of context or model, according to the SycEval study published through the AAAI/ACM Conference on AI, Ethics, and Society (a leading venue for research on AI's societal impacts).

For analytic workflows, this is a serious problem. The model that argues for the dismissed hypothesis when you ask it to do so is the same model that will argue for your favored hypothesis if you reveal your preference before asking. The mitigation is procedural: in the hypothesis generation and steelmanning phases, the analyst must withhold her own assessment from the model. She must prompt from a position of apparent neutrality, asking the model to generate hypotheses or counterarguments without signaling which she finds most plausible. This sounds simple. It requires deliberate discipline in practice, because analysts naturally frame prompts with context that inadvertently reveals their working assumption.

Sycophancy in LLMs is the model's tendency to conform to a user's explicitly stated opinion, even when that opinion is incorrect. A Stanford study published in Science in early 2026 documented that models affirm users' positions about 50% more often than human advisors do, even when the described behavior involves clear errors of judgment. A single sycophantic interaction doesn't just produce a bad analytic output—it makes the analyst more confident in her pre-existing position. That is precisely the opposite of what structured analysis is supposed to accomplish.

The second constraint is counterfactual reasoning failure. The CounterBench evaluation of LLM performance on formal counterfactual reasoning tasks found that state-of-the-art performance reached only 75.8% on carefully constructed problems—meaning even the best models fail roughly one in four counterfactual reasoning tasks when the causal structure is well-specified. In open-ended analytic scenarios with poorly defined causal chains, performance will be worse. When an analyst uses AI to explore "what would the world look like if H2 were true," she is asking the model to reason causally about a hypothetical state of affairs. That reasoning is structurally unreliable in ways the model's confident output does not reveal.

The third constraint is confidence miscalibration. MIT researchers documented in January 2025 that LLMs use 34% more confident language when hallucinating than when stating facts—terms like "definitely," "certainly," and "without a doubt" appear more frequently in incorrect outputs. For analytic workflows, this is the most operationally dangerous finding in the current literature. Analysts are trained to read epistemic hedging as a signal of analytic uncertainty. A model that hedges less when it's wrong inverts that calibration signal entirely. Outputs that feel more confident should trigger more scrutiny, not less.

The Alan Turing Institute's Centre for Emerging Technology and Security (CETaS) framed this as the core institutional challenge: AI enriches intelligence not by reducing uncertainty but by processing more evidence faster, and if analysts and decision-makers misread AI-generated confidence as validated certainty, the result is analytic failure at scale rather than at the individual level. The use of AI has the potential to exacerbate dimensions of uncertainty inherent in intelligence analysis—suggesting that additional guidance for those using AI within national security decision-making is necessary.

The fourth constraint, less discussed but consequential, is the multi-agent debate problem. Analytic teams experimenting with multi-model setups—having one model argue H1 and another argue H2—have found that the performance gains from this approach may not come from the quality of the debate itself. Research presented at NeurIPS 2025 found that majority voting among models accounts for most performance gains typically attributed to debate between models, and that debate does not improve expected correctness on its own. Running three instances of the same model and taking the consensus view is not the same as red-teaming your assessment with an independent analytic cell. The models share training distributions and will tend to converge toward the same probability-weighted answers regardless of which role you've assigned them.

What the Analyst Owns That the Model Cannot

The case for AI-assisted ACH is real. So are its limits. What remains entirely outside the model's capability is a cluster of functions that constitute the actual substance of analytic judgment.

Source judgment is the first and most fundamental. A model generating evidence consistent or inconsistent with a hypothesis is working from whatever reporting the analyst has included in the prompt. It cannot evaluate whether that reporting is reliable. It cannot assess whether a human intelligence source has been doubled. It cannot identify that a piece of signals intelligence was collected during a period when the adversary knew they were being listened to and may have been deliberately shaping the collection. It cannot recognize that a source with a documented history of fabrication has contributed three of the five pieces of evidence consistent with the dominant hypothesis. Source evaluation is the most irreducibly human function in the analytic cycle because it requires institutional memory, access to the full source file, and judgment about human behavior under pressure—none of which a model can hold.

Institutional and organizational context is the second category. An analyst assessing leadership intentions in a particular ministry draws on years of observation of that ministry's internal politics, the career trajectory and documented decision-making patterns of its leadership, the factional dynamics that constrain what any given official can authorize, and the history of prior commitments the organization has made and broken. This context is not in the open-source training data in any usable form. It exists in finished intelligence products with appropriate handling restrictions, in institutional memory distributed across a career workforce, and in the analyst's own direct experience with the target. A model generating hypotheses about leadership intentions without this context will produce hypotheses that are plausible in the abstract and often wrong in the specific.

Political understanding—the third category—encompasses not just the formal political structure of a target government but the informal networks of loyalty, debt, and threat that drive decisions. Understanding why a particular official reversed a policy position requires knowing who he owes, who threatened him, what external pressure was applied through which channel, and what domestic political cost was involved. This is the kind of contextual reasoning that Philip Tetlock's superforecasting research (drawn from his Good Judgment Project, which tracked thousands of forecasters over years to identify what makes prediction accurate) attributes to the best human forecasters: the ability to integrate base rates with situational knowledge that is genuinely unique to the case at hand. Models are excellent at base rates. They struggle with the specific—and intelligence analysis lives in the specific.

The fourth and most consequential thing the analyst owns is the final call. Manual and automated ACH both provide a conceptual strategy for dealing with a complex problem, but the ultimate decision is a judgment by the analyst. This is not a procedural nicety. It reflects a genuine asymmetry: the analyst can be held accountable for her assessment, can articulate why she weighted certain evidence differently than the matrix suggested, and can update her confidence level in response to new collection in ways that a model timestamp cannot. When a policymaker asks "what is your confidence in this assessment and why," the answer must come from a person who can defend the reasoning, acknowledge the assumptions, identify the collection gaps, and explain what would change her mind. A model-generated assessment score does not bear any of that institutional weight.

Structured analytic techniques don't always give the correct answer, but they identify alternatives that deserve consideration. That framing, from the Heuer and Pherson canon, applies with equal force to AI-assisted versions of those techniques. The model is most valuable when it is most constrained: generating the options space, proposing the evidence list, arguing the minority view. The moment it is allowed to score, rank, and adjudicate that evidence on its own, the analyst has surrendered the function that analytic tradecraft exists to protect.

The analyst remains responsible for conclusions, but AI supports the process by expanding the hypothesis set, generating diagnostic indicator candidates, and constructing the counterargument the analyst doesn't want to make. The division is not arbitrary. It maps precisely onto what models are mechanically good at—breadth, pattern retrieval, exhaustiveness—and what they are structurally incapable of: source evaluation, contextual judgment, accountability.

The Practical Implication

There is a specific practice change this episode equips you to make, and it is narrow enough to be actionable on your next analytic problem.

Before you begin scoring evidence against your working hypothesis, run two queries. First: ask the model, without revealing your assessment, to generate every plausible hypothesis for the situation you're analyzing—including hypotheses that are embarrassing, politically inconvenient, or require assumptions about adversary capability or intent that seem unlikely. You are looking for the hypothesis you haven't thought of, not validation of the one you have. Second: take the hypothesis you are most inclined to dismiss, feed the model your evidence set, and ask it to construct the strongest possible argument for that hypothesis using only the evidence already in hand. Read the output not to believe it, but to identify the two or three pieces of evidence it relies on most heavily—then assess how solid those pieces are.

Everything else in the analytic process remains yours. The source judgment, the institutional context, the final confidence level, the accountability for the finished product. The model is doing what it's genuinely good at: exhausting the space of options you might have left partially explored.

Continuous monitoring and evaluation involving both human judgment and AI recommendations is how these tools get used safely and responsibly. The recommendation comes first and is broad. The judgment comes second and is final. Reverse that order, and you haven't improved your analysis. You've laundered your preexisting conclusion through a model that was trained to tell you what you want to hear.

The analysts who will use these tools most effectively are not the ones who are most enthusiastic about AI. They are the ones disciplined enough to use the model precisely where it helps and to recognize, with enough professional confidence, where it stops being useful and they have to take over. That recognition doesn't require understanding transformer architecture. It requires understanding the limits of pattern retrieval in a domain where the decisive variable is often the single thing that has never happened before.

Sources consulted: Scott J. Roberts, "LLM SATs FTW," sroberts.io, August 2025; Richards J. Heuer Jr. and Randolph H. Pherson, Structured Analytic Techniques for Intelligence Analysis; SCSP and CETaS, "Applying AI to Strategic Warning," March 2025; SycEval: Evaluating LLM Sycophancy, AAAI/ACM, 2025; CETaS, "AI and Strategic Decision-Making," Alan Turing Institute; Good Judgment Project, Philip Tetlock and Barbara Mellers