LLMs Turn Novices into Exploiters

This paper highlights a critical shift in software security. It demonstrates that readily available LLMs can be manipulated to generate functional exploits, effectively removing the technical expertise barrier traditionally required for vulnerability exploitation. The research challenges fundamental security assumptions and calls for a redesign of security practices.

• •LLMs can be socially engineered to generate exploits.
• •The RSA pretexting strategy achieves a 100% success rate on tested CVEs.
• •Traditional security boundaries are dissolving due to LLM capabilities.
• •Exploitation now requires prompt crafting, not code understanding.