Offensive Security

Offensive security research is increasingly leveraging large language models (LLMs) to automate and enhance various attack vectors, including social engineering, vulnerability exploitation, and penetration testing. Current research focuses on developing and evaluating LLMs' capabilities in these areas using novel benchmark datasets and automated frameworks, while also addressing ethical concerns and limitations in model robustness and control. This work is significant for improving the effectiveness of cybersecurity defenses by providing realistic threat modeling and informing the development of more robust security systems. The development of AI-driven offensive security tools also highlights the need for ongoing research into ethical considerations and responsible AI development in this domain.

Papers

August 2, 2024

CYBERSECEVAL 3: Advancing the Evaluation of Cybersecurity Risks and Capabilities in Large Language Models
Shengye Wan, Cyrus Nikolaidis, Daniel Song, David Molnar, James Crnkovich, Jayson Grace, Manish Bhatt, Sahana Chennabasappa, Spencer Whitman, Stephanie Ding, Vlad Ionescu, Yue Li, Joshua Saxe
Global Evaluation Capability Evolution LLM Safety Cyber Threat Autonomous Cyber Offensive Security

June 18, 2024

SHIELD: Evaluation and Defense Strategies for Copyright Compliance in LLM Text Generation
Xiaoze Liu, Ting Sun, Tianyang Xu, Feijie Wu, Cunxiang Wang, Xiaoqian Wang, Jing Gao
Global Evaluation Text Generation Real Time Defense Strategy Shield Machine Offensive Security

June 8, 2024

NYU CTF Dataset: A Scalable Open-Source Benchmark Dataset for Evaluating LLMs in Offensive Security
Minghao Shao, Sofija Jancheska, Meet Udeshi, Brendan Dolan-Gavitt, Haoran Xi, Kimberly Milner, Boyuan Chen, Max Yin, Siddharth Garg, Prashanth Krishnamurthy, Farshad Khorrami, Ramesh Karri, Muhammad Shafique
Large Language Model Cybersecurity Task Capture the Flag Offensive Security

May 9, 2024

Artificial Intelligence as the New Hacker: Developing Agents for Offensive Security
Leroy Jacob Valencia
Artificial Intelligence Agent Smith Artificial Intelligence Agent Active Defense Offensive Security

July 31, 2022

Chinese grammatical error correction based on knowledge distillation
Peng Xia, Yuechi Zhou, Ziyan Zhang, Zecheng Tang, Juntao Li
Knowledge Distillation Model Robustness Test Set Chinese Grammatical Error Correction Offensive Security

June 22, 2022

Vulnerability Prioritization: An Offensive Security Approach
Muhammed Fatih Bulut, Abdulhamid Adebayo, Daby Sow, Steve Ocepek
Security Vulnerability Common Vulnerability Penetration Testing Offensive Security

Offensive Security

Papers

CYBERSECEVAL 3: Advancing the Evaluation of Cybersecurity Risks and Capabilities in Large Language Models

SHIELD: Evaluation and Defense Strategies for Copyright Compliance in LLM Text Generation

NYU CTF Dataset: A Scalable Open-Source Benchmark Dataset for Evaluating LLMs in Offensive Security

Artificial Intelligence as the New Hacker: Developing Agents for Offensive Security

Chinese grammatical error correction based on knowledge distillation

Vulnerability Prioritization: An Offensive Security Approach