Techly NewsGet the app

Get the latest tech news

Boffins Build Automated Android Bug Hunting System


Researchers from Nanjing University and the University of Sydney developed an AI-powered bug-hunting agent that mimics human vulnerability discovery, validating flaws with proof-of-concept exploits. The Register reports: Ziyue Wang (Nanjing) and Liyi Zhou (Sydney) have expanded upon prior work dubb...

The Register reports: Ziyue Wang (Nanjing) and Liyi Zhou (Sydney) have expanded upon prior work dubbed A1, an AI agent that can develop exploits for cryptocurrency smart contracts, with A2, an AI agent capable of vulnerability discovery and validation in Android apps. They describe A2 in a preprint paper titled "Agentic Discovery and Validation of Android App Vulnerabilities." And they say that, when they used A2 on 169 production APKs, they found "104 true-positive zero-day vulnerabilities," 57 of which were self-validated via automatically generated proof-of-concept (PoC) exploits.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Boffins

Boffins

Related news:

News photo

Boffins detail new method to make neural nets forget private and copyrighted info

News photo

Boffins build automated Android bug hunting system

News photo

Boffins say tool can sniff 5G traffic, launch 'attacks' without using rogue base stations

« Let us git rid of it, angry GitHub users say of forced Copilot features
Nest 1st gen and 2nd gen thermostats no longer supported from Oct 25 »