English
Related papers

Related papers: MEGA-PT: A Meta-Game Framework for Agile Penetrati…

200 papers

The rapid expansion of Internet use has increased system exposure to cyber threats, with advanced persistent threats (APTs) being especially challenging due to their stealth, prolonged duration, and multi-stage attacks targeting high-value…

Cryptography and Security · Computer Science 2026-03-11 Willie Kouam , Stefan Rass

Penetration testing (pentesting) involves performing a controlled attack on a computer system in order to assess it's security. Although an effective method for testing security, pentesting requires highly skilled practitioners and…

Cryptography and Security · Computer Science 2019-05-16 Jonathon Schwartz , Hanna Kurniawati

ChatGPT is a generative pretrained transformer language model created using artificial intelligence implemented as chatbot which can provide very detailed responses to a wide variety of questions. As a very contemporary phenomenon, this…

Cryptography and Security · Computer Science 2023-07-14 Sheetal Temara

Penetration Testing is a methodology for assessing network security, by generating and executing possible attacks. Doing so automatically allows for regular and systematic testing without a prohibitive amount of human labor. A key question…

Artificial Intelligence · Computer Science 2013-06-21 Carlos Sarraute , Olivier Buffet , Joerg Hoffmann

Advanced Persistent Threats (APTs) have created new security challenges for critical infrastructures due to their stealthy, dynamic, and adaptive natures. In this work, we aim to lay a game-theoretic foundation by establishing a multi-stage…

Computer Science and Game Theory · Computer Science 2018-09-10 Linan Huang , Quanyan Zhu

Offensive security is one of the state of the art measures to protect enterprises and organizations. Penetration testing, broadly called pentesting, is a branch of offensive security designed to find, rate and exploit these vulnerabilities,…

Cryptography and Security · Computer Science 2024-06-13 Jacobo Casado de Gracia , Alfonso Sánchez-Macián

Penetration testing is a well-established practical concept for the identification of potentially exploitable security weaknesses and an important component of a security audit. Providing a holistic security assessment for networks…

Cryptography and Security · Computer Science 2019-01-07 Patrick Speicher , Marcel Steinmetz , Jörg Hoffmann , Michael Backes , Robert Künnemann

In our research, we introduce a new concept called "LLM Augmented Pentesting" demonstrated with a tool named "Pentest Copilot," that revolutionizes the field of ethical hacking by integrating Large Language Models (LLMs) into penetration…

Cryptography and Security · Computer Science 2025-05-20 Dhruva Goyal , Sitaraman Subramanian , Aditya Peela , Nisha P. Shetty

Agile development methods are commonly used to iteratively develop the information systems and they can easily handle ever-changing business requirements. Scrum is one of the most popular agile software development frameworks. The…

Software Engineering · Computer Science 2015-04-07 Martin Tomanek , Tomas Klima

Advanced Persistent Threats (APTs) infiltrate cyber systems and compromise specifically targeted data and/or resources through a sequence of stealthy attacks consisting of multiple stages. Dynamic information flow tracking has been proposed…

Computer Science and Game Theory · Computer Science 2018-11-15 Shana Moothedath , Dinuka Sahabandu , Joey Allen , Andrew Clark , Linda Bushnell , Wenke Lee , Radha Poovendran

The field of software security testing, more specifically penetration testing, is an activity that requires high levels of expertise and involves many manual testing and analysis steps. This paper explores the potential usage of…

Computation and Language · Computer Science 2023-10-19 Andreas Happe , Jürgen Cito

Penetration testing is essential to ensure Web security, which can detect and fix vulnerabilities in advance, and prevent data leakage and serious consequences. The powerful inference capabilities of large language models (LLMs) have made…

Cryptography and Security · Computer Science 2024-11-05 Benlong Wu , Guoqiang Chen , Kejiang Chen , Xiuwei Shang , Jiapeng Han , Yanru He , Weiming Zhang , Nenghai Yu

The absence of data protection measures in software applications leads to data breaches, threatening end-user privacy and causing instabilities in organisations that developed those software. Privacy Enhancing Technologies (PETs) emerge as…

Cryptography and Security · Computer Science 2024-10-02 Maisha Boteju , Thilina Ranbaduge , Dinusha Vatsalan , Nalin Arachchilage

Discovering vulnerabilities in applications of real-world complexity is a daunting task: a vulnerability may affect a single line of code, and yet it compromises the security of the entire application. Even worse, vulnerabilities may…

Cryptography and Security · Computer Science 2020-12-10 Gabriele Costa , Andrea Valenza

Penetration testing (or pentesting) is one of the widely used and important methodologies to assess the security of computer systems and networks. Traditional pentesting relies on the domain expert knowledge and requires considerable human…

Cryptography and Security · Computer Science 2019-08-21 Ge Chu , Alexei Lisitsa

Modern cyber attacks unfold through multiple stages, requiring defenders to dynamically prioritize mitigations under uncertainty. While game-theoretic models capture attacker-defender interactions, existing approaches often rely on static…

Cryptography and Security · Computer Science 2025-08-04 Yuning Jiang , Nay Oo , Qiaoran Meng , Lu Lin , Dusit Niyato , Zehui Xiong , Hoon Wei Lim , Biplab Sikdar

As LLMs become more common, non-expert users can pose risks, prompting extensive research into jailbreak attacks. However, most existing black-box jailbreak attacks rely on hand-crafted heuristics or narrow search spaces, which limit…

Cryptography and Security · Computer Science 2025-11-21 Zhen Sun , Zongmin Zhang , Deqi Liang , Han Sun , Yule Liu , Yun Shen , Xiangshan Gao , Yilong Yang , Shuai Liu , Yutao Yue , Xinlei He

This study examines vulnerabilities in transformer-based automated short-answer grading systems used in medical education, with a focus on how these systems can be manipulated through adversarial gaming strategies. Our research identifies…

Computation and Language · Computer Science 2025-05-02 Sahar Yarmohammadtoosky , Yiyun Zhou , Victoria Yaneva , Peter Baldwin , Saed Rezayi , Brian Clauser , Polina Harikeo

The increasing complexity and scale of modern digital environments have exposed significant gaps in traditional cybersecurity penetration testing methods, which are often time-consuming, labor-intensive, and unable to rapidly adapt to…

Cryptography and Security · Computer Science 2024-09-09 Ibrahim Alshehri , Adnan Alshehri , Abdulrahman Almalki , Majed Bamardouf , Alaqsa Akbar

In games, as in and many other domains, design validation and testing is a huge challenge as systems are growing in size and manual testing is becoming infeasible. This paper proposes a new approach to automated game validation and testing.…

Software Engineering · Computer Science 2022-08-22 Alessandro Sestini , Joakim Bergdahl , Konrad Tollmar , Andrew D. Bagdanov , Linus Gisslén