AI in Security - old sAInt nick | Advent of Cyber 2025 - Day 4

This guide contains the answer and steps necessary to get to them for the AI in Security - old sAInt nick room.

Table of contents

• AI for Cyber Security Showcase

AI for Cyber Security Showcase

1. Complete the AI showcase by progressing through all of the stages. What is the flag presented to you?

   For this flag we need to progress through all stages of the showcase.

   

   Click for answer

   THM{AI_MANIA}

2. Execute the exploit provided by the red team agent against the vulnerable web application hosted at 10.82.155.191:5000. What flag is provided in the script's output after it?Remember, you will need to update the IP address placeholder in the script with the IP of your vulnerable machine (10.82.155.191:5000)

   In the second part of the task there is a red team exercise to generate a script to exploit a vulnerable application. After tasking the AI to generate the script, we can take its output and place it into a python file.

   

   Make sure to update the IP with your current target machine IP. Then run the exploit. It will exploit the SQL injection vulnerability which will enable us to log into the admin account without having its password. This gives us our flag.

   

   Click for answer

   THM{SQLI_EXPLOIT}

3. If you enjoyed today's room, feel free to check out theDefending Adverserial Attacksroom, where you will learn how to harden and secure AI models.