 AI IN OFFENSIVE CYBERSECURITY: AUTONOMOUS TTP EMULATION AND SCALABLE CONTINUOUS TESTINGSali Saliev
Innovative Information Technologies for Economy Digitalization (IITED), 2025, issue 1, 42-53 Abstract: Offensive testing is shifting from ad-hoc, manual exercises to routine, automated checks. We present a system that uses large language models for planning and tool-driven agents for controlled TTP execution against corporate-like lab environments. The approach spans reconnaissance, initial access, lateral movement, and impact while operating under explicit risk policies, scope limits, and an emergency stop. A built-in telemetry pipeline turns technical findings into management-ready exposure metrics (asset criticality, blast radius, attack-path length). In lab scenarios, the system delivers results comparable to human red teams and reduces time-to-finding by 35–60% depending on the case, while enabling nightly "attack rehearsals" to track security drift. We detail prompt-engineering tactics, synthetic-data hardening, and countermeasures against hallucinations, scope creep, and OPSEC leaks. The outcome is a pragmatic “human intent + machine scale†model for continuous control validation and decision-ready analytics. Date: 2025 Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:nwe:iitfed:y:2024:i:1:p:42-53 Access Statistics for this article More articles in Innovative Information Technologies for Economy Digitalization (IITED) from University of National and World Economy, Sofia, Bulgaria Contact information at EDIRC. |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.