LLMs as Hackers: Autonomous Linux Privilege Escalation Attacks

Happe, Andreas; Kaplan, Aaron V.; Cito, Jürgen

doi:10.1007/s10664-025-10758-3

preprintEmpirical Software EngineeringFeb 10, 2026HYBRID OA

LLMs as Hackers: Autonomous Linux Privilege Escalation Attacks

AHAndreas Happe AVAaron V. Kaplan JCJürgen Cito

TU Wien · Insight (China)

Indexed inarxivcrossrefdatacite

Abstract

Abstract Penetration-testing is crucial for identifying and mitigating system vulnerabilities, with privilege-escalation being a critical subtask involving gaining elevated access to protected resources. The emergence of Large Language Models (LLMs) presents new avenues for automating these security practices by emulating human behavior. However, a comprehensive understanding of LLMs’ efficacy and limitations in performing autonomous Linux privilege-escalation attacks remains underexplored. To address this gap, we introduce hackingBuddyGPT , a fully automated LLM-driven prototype designed for evaluating autonomous Linux privilege-escalation. We curated a novel, publicly available Linux privilege-escalation…

Citation impact

7

total citations

FWCI: 90.87
Percentile: 99%
References: 25

Citations per year

Authors

3

Topics & keywords

Topics

Business Process Modeling and Analysis48%

Keywords

Privilege (computing)
De-escalation
Political science
Psychology
History
Law

UN Sustainable Development Goals

Peace, Justice and strong institutions

No related works found for this paper.

Funding

TU
Technische Universität Wien