The reviewed record of science sign in
Pith

arxiv: 2405.03644 · v2 · pith:KC4AP537 · submitted 2024-05-06 · cs.CR · cs.AI

When LLMs Meet Cybersecurity: A Systematic Literature Review

Reviewed by Pithpith:KC4AP537open to challenge →

classification cs.CR cs.AI
keywords llmscybersecurityresearchaddressesapplicationareacomprehensiveliterature
0
0 comments X
read the original abstract

The rapid development of large language models (LLMs) has opened new avenues across various fields, including cybersecurity, which faces an evolving threat landscape and demand for innovative technologies. Despite initial explorations into the application of LLMs in cybersecurity, there is a lack of a comprehensive overview of this research area. This paper addresses this gap by providing a systematic literature review, covering the analysis of over 300 works, encompassing 25 LLMs and more than 10 downstream scenarios. Our comprehensive overview addresses three key research questions: the construction of cybersecurity-oriented LLMs, the application of LLMs to various cybersecurity tasks, the challenges and further research in this area. This study aims to shed light on the extensive potential of LLMs in enhancing cybersecurity practices and serve as a valuable resource for applying LLMs in this field. We also maintain and regularly update a list of practical guides on LLMs for cybersecurity at https://github.com/tmylla/Awesome-LLM4Cybersecurity.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 3 Pith papers

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. ExCyTIn-Bench: Evaluating LLM agents on Cyber Threat Investigation

    cs.CR 2025-07 unverdicted novelty 8.0

    ExCyTIn-Bench is the first benchmark of 7542 questions from Microsoft Sentinel threat investigation graphs, where the best LLM agent achieves a reward of 0.606.

  2. VulLink: A Dynamic Open-Access Vulnerability Graph Database for Cybersecurity Data Mining

    cs.CR 2026-04 unverdicted novelty 3.0

    VulGD is a dynamic open-access graph database that aggregates vulnerability data from multiple sources and uses LLM embeddings to enable more accurate risk assessment and threat prioritization.

  3. Exposing the Ghost in the Transformer: Abnormal Detection for Large Language Models via Hidden State Forensics

    cs.CR 2025-04 unverdicted novelty 3.0

    A framework detects LLM anomalies including hallucinations, jailbreaks, and backdoors by forensic inspection of layer-wise hidden state patterns, reporting over 95% accuracy with minimal computational overhead.