Offensive cyber capabilities
AI Risk"These evaluations focus on whether a LLM possesses certain capabilities in the cyber-domain. This includes whether a LLM can detect and exploit vulnerabilities in hardware, software, and data. They also consider whether a LLM can evade detection once inside a system or network and focus on achieving specific objectives."
Overview
A source-backed snapshot of this AI risk.
Risk profile
How the MIT AI Risk Repository categorizes this risk.
Merged risk records
Source records unified into this canonical risk concept.
MITRISK-InfoComm2023-43.02.01 - Offensive cyber capabilities
"These evaluations focus on whether a LLM possesses certain capabilities in the cyber-domain. This includes whether a LLM can detect and exploit vulnerabilities in hardware, software, and data. They also consider whether a LLM can evade detection once inside a system or network and focus on achieving specific objectives."
MITRISK-Tse2025-72.05.10 - Offensive cyber capability
"Ability to develop, deploy and operate advanced cyber weapons or other offensive cyber tools, including but not limited to vulnerability exploitation, network penetration, social engineering attacks and distributed attack systems, able to evade network defense mechanisms and establish persistent access channels."
Mitigations
Defenses that may help with related attacks.
Showing 4 of 6
Source evidence
Research source for this risk, when available.
Included resource
Cataloguing LLM Evaluations
Original source
MIT AI Risk Repository
Open the public repository used for AI risk records and taxonomy fields.
