View Proposal
-
Proposer
-
Hani Ragab
-
Title
-
Building Ethical Hacking Tools (with AI?)
-
Goal
-
To develop, implement, test and evaluate a hacking tool
-
Description
- The ethical hacking tool could perform one or more attack types, including attacks on TCP/IP and common networking protocols, websites, Windows, Android, Ubuntu and any other software/system.
It also could use any technique, such as (D)DoS, injection (e.g., SQL), overflow (e.g., buffer and heap), etc.
The tool could be for any purpose related to ethical hacking, including reconnaissance (e.g., identifying open ports and available services), deceiving end-users for all sorts of social engineering, building exploits and using them, maintaining access on a system (e.g., through backdoors, remote admin tools, steganography).
It would be interesting to use AI to automate or improve the hacking tool in general. For example, an AI system could be used to automatically find vulnerabilities, generate obfuscated malware, or determine which attack to carry out depending on the target.
I am also interested in upgrading existing tools with new capabilities; most of them are open source and available on github.
Potential challenges (depend on the attack and target): parallelisation of the attack (e.g., port enumeration), training machine learning models, identifying vulnerabilities.
Note:
- Multiple students could work on different hacking tools in parallel.
- Programming languages: C, Python, Ruby, assembly, ... (but not Java!)
- The project's exact level on difficulty will depend on the agreed aim and objectives.
- Resources
-
Depends on the type of attack and the target systems.
-
Background
-
Depends on the type of attack and the target systems.
-
Url
-
-
Difficulty Level
-
Variable
-
Ethical Approval
-
None
-
Number Of Students
-
5
-
Supervisor
-
Hani Ragab
-
Keywords
-
-
Degrees
-