Paper Detail

Towards Automated Pentesting with Large Language Models

Ricardo Bessa, Rui Claro, João Trindade, João Lourenço

Browse

Workflow Queues

arxiv Score 4.3

Published 2026-04-13 · First seen 2026-04-14

General AI

Open paper source

Abstract

Large Language Models (LLMs) are redefining offensive cybersecurity by allowing the generation of harmful machine code with minimal human intervention. While attackers take advantage of dark LLMs such as XXXGPT and WolfGPT to produce malicious code, ethical hackers can follow similar approaches to automate traditional pentesting workflows. In this work, we present RedShell, a privacy-preserving, hardware-efficient framework that leverages fine-tuned LLMs to assist pentesters in generating offensive PowerShell code targeting Microsoft Windows vulnerabilities. RedShell was trained on a malicious PowerShell dataset from the literature, which we further enhanced with manually curated code samples. Experiments show that our framework achieves over 90% syntactic validity in generated samples and strong semantic alignment with reference pentesting snippets, outperforming state-of-the-art counterparts in distance metrics such as edit distance (above 50% average code similarity). Additionally, functional experiments emphasize the execution reliability of the snippets produced by RedShell in a testing scenario that mirrors real-world settings. This work sheds light on the state-of-the-art research in the field of Generative AI applied to malicious code generation and automated testing, acknowledging the potential benefits that LLMs hold within controlled environments such as pentesting.

Workflow Status

Review status
pending
Role
unreviewed
Read priority
later
Vote
Not set.
Saved
no
Collections
Not filed yet.
Next action
Not filled yet.

Reading Brief

No structured notes yet. Add `summary_sections`, `why_relevant`, `claim_impact`, or `next_action` in `papers.jsonl` to enrich this view.

Why It Surfaced

No ranking explanation is available yet.

Tags

No tags.

Similar Papers

PolicyLLM: Towards Excellent Comprehension of Public Policy for Large Language Models 2026-04-14 · Score 14.3 General AI SCM: Sleep-Consolidated Memory with Algorithmic Forgetting for Large Language Models 2026-04-22 · Score 16.0 Research Track A · General AI EpiScreen: Early Epilepsy Detection from Electronic Health Records with Large Language Models 2026-03-30 · Score 4.8 General AI Vision-Language Navigation for Aerial Robots: Towards the Era of Large Language Models 2026-04-09 · Score 13.8 General AI Attribution-Guided Continual Learning for Large Language Models 2026-05-06 · Score 21.5 Research Track A · General AI

BibTeX

@article{bessa2026automated,
  title = {Towards Automated Pentesting with Large Language Models},
  author = {Ricardo Bessa and Rui Claro and João Trindade and João Lourenço},
  year = {2026},
  abstract = {Large Language Models (LLMs) are redefining offensive cybersecurity by allowing the generation of harmful machine code with minimal human intervention. While attackers take advantage of dark LLMs such as XXXGPT and WolfGPT to produce malicious code, ethical hackers can follow similar approaches to automate traditional pentesting workflows. In this work, we present RedShell, a privacy-preserving, hardware-efficient framework that leverages fine-tuned LLMs to assist pentesters in generating offens},
  url = {https://arxiv.org/abs/2604.11772},
  keywords = {cs.CR},
  eprint = {2604.11772},
  archiveprefix = {arXiv},
}

Metadata

{}