LESSON 2.3 - ML AND AI IN CYBERSECURITY
OFFENSE
Identifying specific vulnerabilities in a
Penetration testing
system or applica-tion.
Red Teaming Testing overall security posture and response capabilities.
Helps identify vulnerabilities by analyzing software,
Automated Exploitation Generation
gen-erating exploits, and speeding up the process.
Increases effectiveness of phishing campaigns by crafting
Phishing campaign automation and sending phishing emails, adjusting based on recipi-
ent response, and adapting and improving over time.
Crafts personalized attack vectors by gathering and
Social engineering an-alyzing detailed information, using various social
media platforms, and designing effective attacks.
AI-driven tools like automated vulnerability
Penetration testing tools scanners iden-tify and exploit system weaknesses,
providing a compre-hensive security assessment.
AI-powered platforms simulate phishing
Phishing simulation platforms
attacks to train employees on recognizing
and responding to phishing attempts.
AI tools that simulate APTs test organizational defenses
Advanced persistent threat (APT) simulations
against prolonged and sophisticated cyber attacks.
Involves using specialized tools to identify security
Automated vulnerability scanning
vulner-abilities in systems, networks, and applications.
Common Vulnerabilities and Exposures (CVE) A list of publicly disclosed computer security flaws.
TTP Tactics Techniques Procedures.
Involves creating code or techniques
Exploit generation designed to take advantage of vulnerabilities
in software, systems, or net-works.
Includes Machine Learning for vulnerability detection, Au-
Key AI and ML techniques for exploit generation
tomated exploit development, and Fuzzing.
1/2
OFFENSE
Identifying specific vulnerabilities in a
Penetration testing
system or applica-tion.
Red Teaming Testing overall security posture and response capabilities.
Helps identify vulnerabilities by analyzing software,
Automated Exploitation Generation
gen-erating exploits, and speeding up the process.
Increases effectiveness of phishing campaigns by crafting
Phishing campaign automation and sending phishing emails, adjusting based on recipi-
ent response, and adapting and improving over time.
Crafts personalized attack vectors by gathering and
Social engineering an-alyzing detailed information, using various social
media platforms, and designing effective attacks.
AI-driven tools like automated vulnerability
Penetration testing tools scanners iden-tify and exploit system weaknesses,
providing a compre-hensive security assessment.
AI-powered platforms simulate phishing
Phishing simulation platforms
attacks to train employees on recognizing
and responding to phishing attempts.
AI tools that simulate APTs test organizational defenses
Advanced persistent threat (APT) simulations
against prolonged and sophisticated cyber attacks.
Involves using specialized tools to identify security
Automated vulnerability scanning
vulner-abilities in systems, networks, and applications.
Common Vulnerabilities and Exposures (CVE) A list of publicly disclosed computer security flaws.
TTP Tactics Techniques Procedures.
Involves creating code or techniques
Exploit generation designed to take advantage of vulnerabilities
in software, systems, or net-works.
Includes Machine Learning for vulnerability detection, Au-
Key AI and ML techniques for exploit generation
tomated exploit development, and Fuzzing.
1/2
