A carregar...
Publicação
Cyber Red team bot with RL
| Nome: | Descrição: | Tamanho: | Formato: | |
|---|---|---|---|---|
| 3.55 MB | Adobe PDF |
Autores
Orientador(es)
Resumo(s)
The ever-evolving field of cybersecurity continuously faces numerous challenges, demanding the development of innovative and sophisticated techniques to defend against intrusions, breaches, and data leaks. An increasingly adopted way to identify existing vulnerabilities in a complex networked computing system is through penetration testing. This approach requires a highly skilled group of people called penetration testers to come up with innovative and effective techniques, serving as the barrier of defense between attackers and companies or private individuals valuable information, which makes the time-consuming penetration testing process expensive and prone to human error. To address these issues, this study explores the application of Deep Reinforcement Learning (DRL) algorithms in automating penetration testing procedures and helping penetration testers. By investigating existing works and introducing a novel approach, the research proposes a solution based on the Double Deep Q-Networks (DDQN) algorithm and Graph Neural Networks (GNN) layers to enhance the automation of the penetration testing process. The proposed approach employs a synthetic data-driven environment using property graphs, serving as the foundation for adaptive automated decision-making. Key challenges such as modeling state spaces, training environments, defining actions, and handling uncertainties inherent in penetration testing are critically addressed. Experimental results show that the agent, when trained and evaluated under the same environmental conditions as a human tester, it can outperform this expert-level human counterpart, showcasing it’s potential in advancing current methodologies in penetration testing. The system’s outcomes demonstrate the potential for automating and optimizing penetration testing, ultimately contributing to more effective cybersecurity practices.
Descrição
Tese de Mestrado, Engenharia Informática, 2025, Universidade de Lisboa, Faculdade de Ciências
Palavras-chave
Artificial Intelligence Deep Reinforcement Learning Property Graphs Penetration Testing Cybersecurity