当攻击者介入时:利用LLM微调实现隐蔽C2攻击.pdf

编号:991839 PDF 22页 2.15MB 下载积分:VIP专享
下载报告请您先登录!

1、WEAPONIZING LLM FINE-TUNING FOR STEALTHY C2 When Attackers Tune InIntroductionBar MatalonThreat Intelligence Team LeadPalo Alto Networks(Cortex)Noa DekelSenior Threat Intelligence ResearcherPalo Alto Networks(Cortex)Is your trusted assistantalso your worst enemy?Is my cat gaslighting me or just hung

2、ry?Explain this CVE like I only have 10 seconds to understandIs it legal if the AI does the hacking?Key PointsThe Growing Threat of LLM AbuseThe Fine Tuning Attack VectorChallenges in Using LLMs for C2Demo of C2LLM in ActionDetection and Defense Strategieshttps:/ Abuse in the WildResearch&Reconnaiss

3、anceSocial EngineeringCodingCommand&Controlhttps:/ GuardrailsInconsistent AnswersIf you cant beat them-tune them!LLM as C2-Not That Easy+Pre-trained ModelTraining DataFine-tuned ModelLLM Fine-TuningImplant gathers victims dataPrepares tuning data set with dataTrains model with dataset via APIAttacke

4、r uses the same API keyPrompts the fine-tuned modelGets victims dataunique_victim_model_nameFine-Tuning Attack-First StepsAnd Then We Tried AgainProblem 1:AI HallucinationsAI Hallucinations Models generate incorrect or fabricatedinformation,presenting it as factCauses Training data noise Lack of con

5、text High temperatureSolution Cool it down!Instead of avoiding model overfitting,strive for itProblem 2:Breaking The Models TrainingProblem The model tends to rely on its previous training when given logical variant namesSolution“Weird”variables Non-contextualized prompts Higher learning rateZ_q!wha

6、t?Z_q!Heres what we know about the victim:Problem 3:Time EfficiencyProblem Fine-tuning a model takes a couple of minutes and tokens per directionSolution Using additional features like model description to relay commandsC2LLM in Action:Part 1-Reconand ExecutionC2LLM-Data Exfiltra

友情提示

1、下载报告失败解决办法
2、PDF文件下载后,可能会被浏览器默认打开,此种情况可以点击浏览器菜单,保存网页到桌面,就可以正常下载了。
3、本站不支持迅雷下载,请使用电脑自带的IE浏览器,或者360浏览器、谷歌浏览器下载即可。
4、本站报告下载后的文档和图纸-无水印,预览文档经过压缩,下载后原文更清晰。

本文(当攻击者介入时:利用LLM微调实现隐蔽C2攻击.pdf)为本站 (可不可以) 主动上传,三个皮匠报告文库仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对上载内容本身不做任何修改或编辑。 若此文所含内容侵犯了您的版权或隐私,请立即通知三个皮匠报告文库(点击联系客服),我们立即给予删除!

温馨提示:如果因为网速或其他原因下载失败请重新下载,重复下载不扣分。
客服
商务合作
小程序
服务号
折叠