cybersecurity

4045 readers

15 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

[email protected]

AI models can generate exploit code at lightning speed (www.theregister.com)

submitted 3 days ago by [email protected] to c/[email protected]

6 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] joshcodes 1 points 2 days ago (1 children)

I'm referencing this:

Keely told GPT-4 to generate a Python script that compared – diff'ed, basically – the vulnerable and patched portions of code in the vulnerable Erlang/OPT SSH server.

"Without the diff of the patch, GPT would not have come close to being able to write a working proof-of-concept for it," Keely told The Register.

It wrote a fuzzer before it was told to compare the diff and extrapolate the answer, implying it didn't know how to get to a solution either.

"So if you give it the neighbourhood of the building with the open door and a photo of the doorway that's open, then drive it to the neighbourhood when it tries to go to the mall (it's seen a lot of open doors there), it can trip and fall right before walking through the door."

[–] [email protected] 1 points 2 days ago

That still seems a little hyperbolic, but I see your point.