An Intelligent Penetration Test Simulation Environment Construction Method Incorporating Social Engineering Factors

Li, Yang; Wang, Yongjie; Xiong, Xinli; Zhang, Jingye; Yao, Qian

doi:10.3390/app12126186

Cited by 4 publications

(5 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, it demanded significant computational resources and expertise in machine learning. Yang Li et al [9] introduced an enhanced network graph model for penetration testing, which seamlessly integrated pertinent security attributes into the process. This intelligent penetration testing method leveraged reinforcement learning and social engineering factors.…”

Section: Literature Reviewmentioning

confidence: 99%

“…They enhance response by swiftly isolating threats, and minimizing damage. This automation accelerates testing, enabling security professionals to focus on strategic analysis [9]. By enhancing threat detection accuracy, optimizing resource allocation, and reducing false positives, ML and AI elevate penetration testing's efficiency and effectiveness, fortifying cyber security in an increasingly intricate threat landscape.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Penetration Testing Framework using the Q Learning Ensemble Deep CNN Discriminator Framework

Railkar,

Joshi

2024

IJACSA

View full text Add to dashboard Cite

Penetration testing (PT) serves as an effective tool for examining networks and identifying vulnerabilities by simulating a hacker's attack to uncover valuable information, such as details about the host's operating and database systems. Strong penetration testing is crucial for assessing system vulnerabilities in the constantly changing world of cyber security. Existing methods often struggle with adapting to dynamic threats, providing limited automation, and lacking the ability to discern subtle security weaknesses. In comparison to manual PT, intelligent PT has gained widespread popularity due to its efficiency, resulting in reduced time consumption and lower labor costs. Considering this, the effective penetration testing framework is developed using prairie natural swarm (PNS) optimized Q-learning ensemble deep CNN. Initially, the penetration testing environment (Shodan search engine) is simulated, and along with that expert knowledge base is also generated. Subsequently, the Nmap script engine and Metasploit are deployed, providing robust tools for network investigation and vulnerability assessment. The system state is then relayed to the Q-learning ensemble deep convolutional neural network (Qlearning ensemble deep CNN) classifier. This unique ensemble combines the strengths of Q-learning and deep CNNs, enabling optimal policy learning for decision-making. The prairie natural swarm optimization algorithm is developed through the hybridization of coyote and particle swarm characteristics to fine-tune classifier parameters, enhancing performance. Additionally, the discriminator is trained to maximize standard action rewards while minimizing discounted action rewards, distinguishing valuable from less valuable information. By evaluating the advantage function, successful penetration likelihood is determined, informing situational decision-making through the Q-learning ensemble deep CNN classifier. Accuracy, sensitivity, and specificity as well as the proposed PNS-optimized Q-learning ensemble deep model are used to evaluate the output. In comparison to other approaches currently in use, CNN achieves values of 94.54%, 94.40%, 94.90% for TP, 94.64%, 94.69%, and 94.52% for k-fold.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Penetration Testing Framework using the Q Learning Ensemble Deep CNN Discriminator Framework

Railkar,

Joshi

2024

IJACSA

View full text Add to dashboard Cite

show abstract

“…AI-driven penetration testing tools, which can adjust their strategies based on real-time data, can simulate complex cyber-attack scenarios more dynamically and realistically than traditional methods [120]. Dynamic Penetration Testing [45], [44], [43], [140] Penetration Testing Optimization [103], [57], [64], [30], [178], [142], [71], [78] Penetration Testing in Large-Scale Network [101], [190], [47], [100] Fuzz Testing Fuzz Data Generation [104], [127], [148], [198] Fuzz Testing Performance Improvement…”

Section: Penetration Testingmentioning

confidence: 99%

“…Incorporating social engineering elements into penetration testing frameworks signi cantly enhances their realism and overall effectiveness. By leveraging RL algorithms within modi ed network graph models, these approaches train and evaluate penetration testing strategies that include tactics like phishing and pretexting, providing a dynamic and realistic setting for cybersecurity testing (Article [103]).…”

Section: Reinforcementmentioning

confidence: 99%

Artificial intelligence for system security assurance: A systematic literature review

Wen,

Shukla,

Katt

2024

Preprint

View full text Add to dashboard Cite

System Security Assurance (SSA) has emerged as a critical methodology for organizations to verify the trustworthiness of their systems by evaluating security measures against industry standards, legal requirements, and best practices to identify any weakness and demonstrate compliance. In recent years, the role of Artificial Intelligence (AI) in enhancing cybersecurity has received increased attention, with an increasing number of literature reviews highlighting its diverse applications. However, there remains a significant gap in comprehensive reviews that specifically address the integration of AI within SSA frameworks. This systematic literature review seeks to fill this research gap by assessing the current state of AI in SSA, identifying key areas where AI contributes to improve SSA processes, highlighting the limitations of current methodologies, and providing the guidance for future advancements in the field of AI-driven SSA.

show abstract

“…Chen et al [19] introduce expert knowledge to guide the attack agent to make better decisions in RL-based automated attacks. Li et al [20] construct an improved network graph model and incorporates social engineering into automated penetration testing (PT) platforms. The intelligent attack simulators [2][3][4][5][6] can construct the cyber attack model, utilize attack loads, and plan attack paths automatically, aiming at improving the intelligent level of cyber attack capability.…”

Section: Related Workmentioning

confidence: 99%

Adversarial Decision-Making for Moving Target Defense: A Multi-Agent Markov Game and Reinforcement Learning Approach

Yao

Wang

Xiong

et al. 2023

Entropy

Self Cite

View full text Add to dashboard Cite

Reinforcement learning has shown a great ability and has defeated human beings in the field of real-time strategy games. In recent years, reinforcement learning has been used in cyberspace to carry out automated and intelligent attacks. Traditional defense methods are not enough to deal with this problem, so it is necessary to design defense agents to counter intelligent attacks. The interaction between the attack agent and the defense agent can be modeled as a multi-agent Markov game. In this paper, an adversarial decision-making approach that combines the Bayesian Strong Stackelberg and the WoLF algorithms was proposed to obtain the equilibrium point of multi-agent Markov games. With this method, the defense agent can obtain the adversarial decision-making strategy as well as continuously adjust the strategy in cyberspace. As verified in experiments, the defense agent should attach importance to short-term rewards in the process of a real-time game between the attack agent and the defense agent. The proposed approach can obtain the largest rewards for defense agent compared with the classic Nash-Q and URS-Q algorithms. In addition, the proposed approach adjusts the action selection probability dynamically, so that the decision entropy of optimal action gradually decreases.

show abstract

An Intelligent Penetration Test Simulation Environment Construction Method Incorporating Social Engineering Factors

Cited by 4 publications

References 23 publications

Penetration Testing Framework using the Q Learning Ensemble Deep CNN Discriminator Framework

Penetration Testing Framework using the Q Learning Ensemble Deep CNN Discriminator Framework

Artificial intelligence for system security assurance: A systematic literature review

Adversarial Decision-Making for Moving Target Defense: A Multi-Agent Markov Game and Reinforcement Learning Approach

Contact Info

Product

Resources

About