all InfoSec news
LLMs as Hackers: Autonomous Linux Privilege Escalation Attacks
March 20, 2024, 4:11 a.m. | Andreas Happe, Aaron Kaplan, J\"urgen Cito
cs.CR updates on arXiv.org arxiv.org
Abstract: Penetration testing, an essential component of software security testing, allows organizations to proactively identify and remediate vulnerabilities in their systems, thus bolstering their defense mechanisms against potential cyberattacks. One recent advancement in the realm of penetration testing is the utilization of Language Models (LLMs).
We explore the intersection of LLMs and penetration testing to gain insight into their capabilities and challenges in the context of privilege escalation. We create an automated Linux privilege-escalation benchmark utilizing …
advancement arxiv attacks autonomous cs.ai cs.cr cyberattacks defense escalation hackers identify language language models linux llms organizations penetration penetration testing privilege privilege escalation realm security security testing software software security systems testing vulnerabilities
More from arxiv.org / cs.CR updates on arXiv.org
IDEA: Invariant Defense for Graph Adversarial Robustness
2 days, 12 hours ago |
arxiv.org
FairCMS: Cloud Media Sharing with Fair Copyright Protection
2 days, 12 hours ago |
arxiv.org
Efficient unitary designs and pseudorandom unitaries from permutations
2 days, 12 hours ago |
arxiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Network Security Engineer
@ Meta | Menlo Park, CA | Remote, US
Security Engineer, Investigations - i3
@ Meta | Washington, DC
Threat Investigator- Security Analyst
@ Meta | Menlo Park, CA | Seattle, WA | Washington, DC
Security Operations Engineer II
@ Microsoft | Redmond, Washington, United States
Engineering -- Tech Risk -- Global Cyber Defense & Intelligence -- Bug Bounty -- Associate -- Dallas
@ Goldman Sachs | Dallas, Texas, United States