DEFCON 31

Talks

DayStart TimeLength (Minutes)Primary SpeakerTalk Title
Friday10:0010AI Village OrganizersAI Village Opening Remarks
Friday10:1545Joshua Saxe, METAKeynote: The last attempted AI revolution in security, and the next one (Slides on Google Drive)
Friday11:0015Will PearceCTF Kickoff and Introduction
Friday11:3025Kyle Easterly; Mitch KitterLLMs: Loose Lips Multipliers
Friday12:0025Adhishree Kathikar; Aishwarya NairAssessing the Vulnerabilities of the Open-Source Artificial Intelligence (AI) Landscape: A Large-Scale Analysis of the Hugging Face Platform (Slides)
Friday12:3055Marta JanusNot Just The Pickle: An Overview of Exploitable ML Serialization Formats
Friday13:3025Ari Herbert-Voss; Shane CaldwellHow NOT to Train your Hack Bot: Dos and Don’ts of Building Offensive GPTs
Friday14:0055Ram Shankar Siva KumarA Few Useful Lessons about AI Red Teaming
Friday16:0055Chloe Messdaghi moderatingPanel: Unveiling the Secrets: Breaking into AI/ML Security Bug Bounty Hunting
Friday17:0055Tom BonnerGhost in the Neurons - ML Webshells
DayStart TimeLength (Minutes)Primary SpeakerTalk Title
Saturday10:3055Mikel Rodriguez; Daniel Fabian; Sarah HodkinsonKeynote 2: AI red teaming tradecraft: a team of teams approach (Slides)
Saturday11:3055Eryk Salvaggio moderatingPanel : Creative Misuse of AI Systems
Saturday12:3055Robert Hudock; Nick MaiettaLLM Legal Risk Management, and Use Case Development Strategies to Minimize Risk (Slides)
Saturday13:3055Ben Gelman; Younghoo LeeThe Sinister Synergy of Advanced AI: Automatically Orchestrating Large-scale Scam Campaigns with Large Generative Models (Slides)
Saturday15:0025Adrian Woodyou sound confused, anyways - thanks for the jewels. (Slides)
Saturday15:3025Kenneth YeungHackaprompt 2023: Trials and Tribulations (Slides)
Saturday16:0025Ram Shankar Siva KumarIgnore the Law: The Legal Risks of Prompt Injection Attacks on Large Language Models
Saturday16:3055Gavin KlondikeChatGPT: Your Red Teaming Ally
DayStart TimeLength (Minutes)Primary SpeakerTalk Title
Sunday10:0025Rafael Turner, DedroneFuzzing and Symbolic Execution: Offensive Techniques to Unmask Vulnerabilities in Neural Networks
Sunday10:4545Sven CattellGRT Report Out
Sunday11:1530AI Village OrganizersAI Village Closing Remarks

Demos

Last year we hosted StableDiffusion a few days before it's release. This year we are returning with more demo stations and opening them to submissions! We will have 2 demo stations equipped with a pair of A6000, and a demo station for remote demos. We'll be hosting ControlNet, Whisper, Alpaca, and notebooks that get into the gory details of these models.

If you want to present an open source demo that you think the security community should see, please get in touch!

Prompt Detective

Are you curious about the capabilities and limitations of large language models (LLMs) like GPT3 and Bloom? Do you want to participate in a unique exercise where you try to get LLMs to misbehave? Join us for Prompt Detective where you'll learn about the technology behind LLMs, their applications, and their current limitations. We will have a few target LLMs set up where you can learn how to perform prompt injection against different levels of RLHF. This workshop is open to all individuals, regardless of their background or expertise. It is designed to teach prompt engineering techniques to beginners, and provide a safe target range for people to practice the basics of manipulating the egde cases of this new technology in potentially harmful ways.