Towards Supporting Penetration Testing Education with Large Language Models: An Evaluation and Comparison

Martin Nizon-Deladoeuille; Brynjolfur Stefansson; Helmut Neukirchen; Thomas Welsh

doi:10.1109/SNAMS64316.2024.10883774

Towards Supporting Penetration Testing Education with Large Language Models: An Evaluation and Comparison

Martin Nizon-Deladoeuille
, Brynjolfur Stefansson
, Helmut Neukirchen
, Thomas Welsh

Faculty of Industrial Engineering, Mechanical Engineering and Computer Science

University of Iceland

Research output: Contribution to journal › Conference article › peer-review

Abstract

Cybersecurity education is challenging and it is helpful for educators to understand Large Language Models' (LLMs') capabilities for supporting education. This study eval-uates the effectiveness of LLMs in conducting a variety of pene-Tration testing tasks. Fifteen representative tasks were selected to cover a comprehensive range of real-world scenarios. We evaluate the performance of 6 models (GPT-40 mini, GPT-40, Gemini 1.5 Flash, Llama 3.1 405B, Mixtral8x7B and WhiteRabbitNeo) upon the Metasploitable v3 Ubuntu image and OWASP Web Goat. Our findings suggest that GPT-40 mini currently offers the most consistent support making it a valuable tool for educational purposes. However, its use in conjonction with WhiteRabbitNeo should be considered, because of its innovative approach to tool and command recommendations. This study underscores the need for continued research into optimising LLMs for complex, domain-specific tasks in cybersecurity education.

Original language	English
Pages (from-to)	227-229
Number of pages	3
Journal	International Conference on Social Networks Analysis, Management and Security, SNAMS
Issue number	2024
DOIs	https://doi.org/10.1109/SNAMS64316.2024.10883774
Publication status	Published - 2024
Event	11th IEEE International Conference on Social Networks Analysis, Management and Security, SNAMS 2024 - Gran Canaria, Spain Duration: 9 Dec 2024 → 11 Dec 2024

Bibliographical note

Other keywords

AI
Cybersecurity
Education
Large Language Models (LLM)
Penetration testing

Access to Document

10.1109/SNAMS64316.2024.10883774

Cite this

@article{3e3a95e865624889bb78ef05919d7db1,

title = "Towards Supporting Penetration Testing Education with Large Language Models: An Evaluation and Comparison",

abstract = "Cybersecurity education is challenging and it is helpful for educators to understand Large Language Models' (LLMs') capabilities for supporting education. This study eval-uates the effectiveness of LLMs in conducting a variety of pene-Tration testing tasks. Fifteen representative tasks were selected to cover a comprehensive range of real-world scenarios. We evaluate the performance of 6 models (GPT-40 mini, GPT-40, Gemini 1.5 Flash, Llama 3.1 405B, Mixtral8x7B and WhiteRabbitNeo) upon the Metasploitable v3 Ubuntu image and OWASP Web Goat. Our findings suggest that GPT-40 mini currently offers the most consistent support making it a valuable tool for educational purposes. However, its use in conjonction with WhiteRabbitNeo should be considered, because of its innovative approach to tool and command recommendations. This study underscores the need for continued research into optimising LLMs for complex, domain-specific tasks in cybersecurity education.",

keywords = "AI, Cybersecurity, Education, Large Language Models (LLM), Penetration testing",

author = "Martin Nizon-Deladoeuille and Brynjolfur Stefansson and Helmut Neukirchen and Thomas Welsh",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 11th IEEE International Conference on Social Networks Analysis, Management and Security, SNAMS 2024 ; Conference date: 09-12-2024 Through 11-12-2024",

year = "2024",

doi = "10.1109/SNAMS64316.2024.10883774",

language = "English",

pages = "227--229",

journal = "International Conference on Social Networks Analysis, Management and Security, SNAMS",

issn = "2831-7351",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "2024",

}

Towards Supporting Penetration Testing Education with Large Language Models: An Evaluation and Comparison. / Nizon-Deladoeuille, Martin; Stefansson, Brynjolfur; Neukirchen, Helmut et al.
In: International Conference on Social Networks Analysis, Management and Security, SNAMS, No. 2024, 2024, p. 227-229.

Research output: Contribution to journal › Conference article › peer-review

TY - JOUR

T1 - Towards Supporting Penetration Testing Education with Large Language Models

T2 - 11th IEEE International Conference on Social Networks Analysis, Management and Security, SNAMS 2024

AU - Nizon-Deladoeuille, Martin

AU - Stefansson, Brynjolfur

AU - Neukirchen, Helmut

AU - Welsh, Thomas

PY - 2024

Y1 - 2024

N2 - Cybersecurity education is challenging and it is helpful for educators to understand Large Language Models' (LLMs') capabilities for supporting education. This study eval-uates the effectiveness of LLMs in conducting a variety of pene-Tration testing tasks. Fifteen representative tasks were selected to cover a comprehensive range of real-world scenarios. We evaluate the performance of 6 models (GPT-40 mini, GPT-40, Gemini 1.5 Flash, Llama 3.1 405B, Mixtral8x7B and WhiteRabbitNeo) upon the Metasploitable v3 Ubuntu image and OWASP Web Goat. Our findings suggest that GPT-40 mini currently offers the most consistent support making it a valuable tool for educational purposes. However, its use in conjonction with WhiteRabbitNeo should be considered, because of its innovative approach to tool and command recommendations. This study underscores the need for continued research into optimising LLMs for complex, domain-specific tasks in cybersecurity education.

AB - Cybersecurity education is challenging and it is helpful for educators to understand Large Language Models' (LLMs') capabilities for supporting education. This study eval-uates the effectiveness of LLMs in conducting a variety of pene-Tration testing tasks. Fifteen representative tasks were selected to cover a comprehensive range of real-world scenarios. We evaluate the performance of 6 models (GPT-40 mini, GPT-40, Gemini 1.5 Flash, Llama 3.1 405B, Mixtral8x7B and WhiteRabbitNeo) upon the Metasploitable v3 Ubuntu image and OWASP Web Goat. Our findings suggest that GPT-40 mini currently offers the most consistent support making it a valuable tool for educational purposes. However, its use in conjonction with WhiteRabbitNeo should be considered, because of its innovative approach to tool and command recommendations. This study underscores the need for continued research into optimising LLMs for complex, domain-specific tasks in cybersecurity education.

KW - AI

KW - Cybersecurity

KW - Education

KW - Large Language Models (LLM)

KW - Penetration testing

UR - https://www.scopus.com/pages/publications/105001673237

U2 - 10.1109/SNAMS64316.2024.10883774

DO - 10.1109/SNAMS64316.2024.10883774

M3 - Conference article

SN - 2831-7351

SP - 227

EP - 229

JO - International Conference on Social Networks Analysis, Management and Security, SNAMS

JF - International Conference on Social Networks Analysis, Management and Security, SNAMS

IS - 2024

Y2 - 9 December 2024 through 11 December 2024

ER -

Towards Supporting Penetration Testing Education with Large Language Models: An Evaluation and Comparison

Abstract

Bibliographical note

Other keywords

Access to Document

Fingerprint

Cite this