ChatGPT for Hacking - Speaker Deck

ChatGPT for Hacking

by Anugrah SR

Slide 1

Slide 1 text

CHATGPT FOR HACKING Unleashing the Power of ChatGPT for Bug Bounty and Penetration Testing -Anugrah SR Rootecstak

Slide 2

Slide 2 text

TODAY'S AGENDA What is ChatGPT 1 Use cases in Hacking 2 Limitations 3 Prompts 4

Slide 3

Slide 3 text

> Anugrah SR Anugrah ChatGPT root@cypher:~#whoami > Cyber Security consultant at SecOps Group Independent Bugbounty Hunter Synack Red Team Member > Blogger, Speaker anugrahsr.in | p1boom.com > Find me here Twitter: @cyph3r_asr LinkedIn: anugrah-sr Web: anugrahsr.in

Slide 4

Slide 4 text

Data is the new oil AGE OF AI What is AI AI stands for artificial intelligence, which refers to the simulation of human intelligence in machines that are programmed to think and learn like humans. Unmanned Drones Self driving cars Smart assistance Spam filters Robots Facial Recognition 1 Computing Power increased 2 Make life easy 3

Slide 5

Slide 5 text

No content

Slide 6

Slide 6 text

The development of deep learning, a subfield of machine learning that uses neural networks with many layers to learn from and make predictions on data. This has led to significant improvements in areas such as image and speech recognition, natural language processing, and computer vision. Most notable advancements in AI

Slide 7

Slide 7 text

Computer Vision https://thispersondoesnotexist.com/

Slide 8

Slide 8 text

Image Generation

Slide 9

Slide 9 text

Speech Recognition

Slide 10

Slide 10 text

Focuses on the interaction between computers and human languages. The goal of NLP is to develop techniques that enable computers to understand, interpret, and generate human language. Natural Language Processing speech recognition machine translation sentiment analysis text summarization question answering. NLP techniques are used in a wide range of applications, such as These techniques are based on a combination of linguistics, computer science, and machine learning.

Slide 11

Slide 11 text

Text tokenization: breaking a sentence or a text into words, phrases, or sentences. Part-of-speech tagging: identifying the grammatical role of words in a sentence. Named entity recognition: identifying and classifying named entities such as people, organizations, and locations in a text. Sentiment analysis: determining the attitude or emotion expressed in a text. Text summarization: creating a shorter version of a text that preserves its main ideas. Some of the most common NLP tasks include: Natural Language Processing

Slide 12

Slide 12 text

WHAT IS CHATGPT-3 Are You Ready?

Slide 13

Slide 13 text

OPENAI ChatGPT-3 is a state-of-the-art language generation model developed by OpenAI. It was founded in 2015 by Elon Musk and others OpenAI is a research organization that aims to promote and develop friendly AI in a responsible way.

Slide 14

Slide 14 text

CHATGPT-3 GPT-3 is "Generative Pre-trained Transformer 3" . It is a language generation model developed by OpenAI, that uses deep learning techniques to generate human-like text. GPT-3 Nov 30 2022 ChatGPT-3 was released and rest was history

Slide 15

Slide 15 text

IT WAS VIRAL People started taking advantage of it and having fun with it

Slide 16

Slide 16 text

No content

Slide 17

Slide 17 text

Accessing ChatGPT https://chat.openai.com/

Slide 18

Slide 18 text

Accessing ChatGPT https://chat.openai.com/

Slide 19

Slide 19 text

Accessing ChatGPT https://chat.openai.com/chat

Slide 20

Slide 20 text

https://chat.openai.com/chat

Slide 21

Slide 21 text

Let's see how as hacker we can use it

Slide 22

Slide 22 text

What is prompt A prompt is a piece of text that guides the GPT-3 model in generating relevant and coherent text. It sets the context and topic for the generated text and the quality of the generated text is highly dependent on the prompt provided. New job role: prompt engineer a prompt engineer is a person who is responsible for designing and creating prompts for a language generation model like GPT-3, with the goal of ensuring that the generated text is relevant, coherent, and of high quality.

Slide 23

Slide 23 text

Before you use ChatGPT It is only as good as the data it has been trained on, so it may not be able to generate responses to prompts or situations that it has not seen before. Do not put your sensitive information prompt Always verify the information

Slide 24

Slide 24 text

what are some prompt that a hacker can use?

Slide 25

Slide 25 text

Are you looking for a mentor? how can I get started in cyber security? can you teach me what is an ssrf with example what are places to learn about bugbounty

Slide 26

Slide 26 text

Help you write Reports write a pentest report for a sql finding at endpoint "http://testphp.vulnweb.com/search.php?test=test%27" with remediation, recommendation ,step to reproduce

Slide 27

Slide 27 text

Help you write Emails

Slide 28

Slide 28 text

Help you write Blog

Slide 29

Slide 29 text

Help you write Automation Script

Slide 30

Slide 30 text

Help you write your own CTF

Slide 31

Slide 31 text

Help you write your own Burp Extension

Slide 32

Slide 32 text

Make tools faster

Slide 33

Slide 33 text

Help you write your own Burp Extension

Slide 34

Slide 34 text

Help you write your own Nuclei template

Slide 35

Slide 35 text

Help you write your own Browser Extension

Slide 36

Slide 36 text

Help you find bugs in code

Slide 37

Slide 37 text

No content

Slide 38

Slide 38 text

No content

Slide 39

Slide 39 text

Banning ChatGPT The primary objective of the OSCP exam is to evaluate your skills in identifying and exploiting vulnerabilities, not in automating the process.

Slide 40

Slide 40 text

Will AI replace me? The short answer is NO But some who know how to use AI will

Slide 41

Slide 41 text

https://anugrahsr.in/chatgpt-for-hacking/

Slide 42

Slide 42 text

Thank you Twitter @cyph3r_asr LinkedIn @anugrah-sr www.anugrahsr.in Slides will be available here: