[LPisGood]

I don’t think it matters so much if LOM are better at offensive security or defensive security. I think offensive security was previously an extremely niche skill set (how many people off the street would be able to solve even a few CTF problems 5 years ago?).

Now anyone can point an LLM at any software they want and say go to town. Even if it doesn’t do a great job or better than a good human or anything like that it’s so much more than what they could do before, and a lot of security vulnerabilities are kind of low hanging fruit anyway.

[embedding-shape]

But if that's true for attacking, I don't see how it's not also true for defence? If LLMs make it easier to attack, and this is a generally available model, then it can as well be used for defence, and easier too, since you have the source too.