The Evolving Landscape of Cybersecurity: Red Teams, Large Language Models, and the Emergence of New AI Attack Surfaces
-
Published:2023-03-30
Issue:1
Volume:13
Page:1-34
-
ISSN:1839-8626
-
Container-title:International Journal on Cryptography and Information Security
-
language:
-
Short-container-title:IJCIS
Author:
McKee Forrest,Noever David
Abstract
This study explores cybersecurity questions using a question-and-answer format with the advanced ChatGPT model from OpenAI. Unlike previous chatbots, ChatGPT demonstrates an enhanced understanding of complex coding questions. We present thirteen coding tasks aligned with various stages of the MITRE ATT&CK framework, covering areas such as credential access and defense evasion. The experimental prompts generate keyloggers, logic bombs, obfuscated worms, and ransomware with payment fulfillment, showcasing an impressive range of functionality, including self-replication, self-modification, and evasion. Despite being a language-only model, a notable feature of ChatGPT showcases its coding approaches to produce images with obfuscated or embedded executable programming steps or links.
Publisher
Academy and Industry Research Collaboration Center (AIRCC)
Subject
Marketing,Organizational Behavior and Human Resource Management,Strategy and Management,Drug Discovery,Pharmaceutical Science,Pharmacology
Reference58 articles.
1. [1] Radford, A., Narasimhan, K., Salimans, T., & Sutskever, I. (2018). Improving language
2. understanding by generative pre-training. OpenAI, https://cdn.openai.com/research-covers/languageunsupervised/language_understanding_paper.pdf
3. [2] Zemčík, M. T. (2019). A brief history of chatbots. DEStech Transactions on Computer Science and
4. Engineering, 10.
5. AI amusements: the tragic tale of Tay the chatbot;Davis;AI Matters,2016