Automated penetration-testing through artificial intelligence

The goal of the "AI-supported penetration testing (PeT-HMR)" project is to automate penetration testing processes through the use of artificial intelligence (AI) to such an extent that widespread and cost-effective deployment becomes possible. To this end, the project team is developing a combination of automated penetration testing and an intelligent honeypot. The honeypot is a controlled system that appears like an attractive target to attackers. It is adapted to the infrastructure of the computer system and makes it possible to observe and analyze attacks - virtually from within the system. In this way, the behavior of new malware can be detected and conclusions about remaining system vulnerabilities can be drawn. The honeypot thus complements penetration testing, which in turn identifies vulnerabilities from the other side - i.e., from the attackers' point of view. The interaction of the two components is being researched in this project and the suitability of the developed IT security solution is being tested in a demonstrator.

This project is a cooperation of X41 D-Sec GmbH, Lufthansa Industry Solutions AS GmbH, NetUSE AG and the Institutes for Information Systems and for IT Security at the University of Lübeck. The project is funded by the German Federal Ministry of Education and Research (BMBF).