{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T09:10:56Z","timestamp":1780045856560,"version":"3.53.1"},"reference-count":68,"publisher":"Elsevier BV","license":[{"start":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T00:00:00Z","timestamp":1777593600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"},{"start":{"date-parts":[[2026,5,1]],"date-time":"2026-05-01T00:00:00Z","timestamp":1777593600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/legal\/tdmrep-license"},{"start":{"date-parts":[[2026,3,24]],"date-time":"2026-03-24T00:00:00Z","timestamp":1774310400000},"content-version":"vor","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100001871","name":"Fundacao para a Ciencia e a Tecnologia","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001871","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100008530","name":"European Regional Development Fund","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100008530","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["elsevier.com","sciencedirect.com"],"crossmark-restriction":true},"short-container-title":["Internet of Things"],"published-print":{"date-parts":[[2026,5]]},"DOI":"10.1016\/j.iot.2026.101932","type":"journal-article","created":{"date-parts":[[2026,3,27]],"date-time":"2026-03-27T04:04:20Z","timestamp":1774584260000},"page":"101932","update-policy":"https:\/\/doi.org\/10.1016\/elsevier_cm_policy","source":"Crossref","is-referenced-by-count":0,"special_numbering":"C","title":["Autonomous pentesting using artificial intelligence: from the cybersecurity point-of-view"],"prefix":"10.1016","volume":"37","author":[{"ORCID":"https:\/\/orcid.org\/0009-0002-1365-0208","authenticated-orcid":false,"given":"Rui","family":"Fernandes","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Nuno","family":"Lopes","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2219-1816","authenticated-orcid":false,"given":"Joaquim","family":"Gon\u00e7alves","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"John","family":"Cosgrove","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"78","reference":[{"issue":"4","key":"10.1016\/j.iot.2026.101932_bib0001","doi-asserted-by":"crossref","first-page":"1890","DOI":"10.1109\/TDSC.2023.3294433","article-title":"ILLATION: Improving vulnerability risk prioritization by learning from network","volume":"21","author":"Zeng","year":"2024","journal-title":"IEEE Trans. Depend. Secure Comput."},{"key":"10.1016\/j.iot.2026.101932_bib0002","unstructured":"E. U. A. for Cybersecurity (ENISA), Cyber Europe 2024, 2024, Accessed: 2026-02-10, https:\/\/www.enisa.europa.eu\/sites\/default\/files\/2024-12\/Cyber_Europe_AAR_2024_1.pdf."},{"key":"10.1016\/j.iot.2026.101932_bib0003","unstructured":"S. Institute, What You Need to Know About the SolarWinds Supply Chain Attack, 2020, Accessed: 2026-02-10, https:\/\/isc.sans.edu\/diary\/26884."},{"key":"10.1016\/j.iot.2026.101932_bib0004","article-title":"Deepfake technology impersonates U.S. officials, prompting warnings about AI risks","author":"Sanger","year":"2024","journal-title":"The New York Time."},{"issue":"1","key":"10.1016\/j.iot.2026.101932_bib0005","doi-asserted-by":"crossref","first-page":"55","DOI":"10.1186\/s42400-025-00361-w","article-title":"When LLMs meet cybersecurity: a systematic literature review","volume":"8","author":"Zhang","year":"2025","journal-title":"Cybersecurity"},{"key":"10.1016\/j.iot.2026.101932_bib0006","unstructured":"F.N. Motlagh, M. Hajizadeh, M. Majd, P. Najafi, F. Cheng, C. Meinel, Large Language Models in Cybersecurity: State-of-the-Art, 2024, arXiv: 2402.00891."},{"key":"10.1016\/j.iot.2026.101932_bib0007","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2022.103006","article-title":"The threat of offensive AI to organizations","volume":"124","author":"Mirsky","year":"2023","journal-title":"Comput. Secur."},{"issue":"5","key":"10.1016\/j.iot.2026.101932_bib0008","doi-asserted-by":"crossref","first-page":"539","DOI":"10.1093\/comjnl\/bxae130","article-title":"Enhancing security of medical images using code-based intermittent encryption and convolutional neural network","volume":"68","author":"Aruchamy","year":"2024","journal-title":"Comput. J."},{"key":"10.1016\/j.iot.2026.101932_bib0009","series-title":"2025 International Conference on Computing Technologies (ICOCT)","first-page":"1","article-title":"A deep learning-based workload forecasting model in cloud data centers","author":"Prasanth","year":"2025"},{"key":"10.1016\/j.iot.2026.101932_bib0010","series-title":"2025 3rd International Conference on Intelligent Data Communication Technologies and Internet of Things (IDCIoT)","first-page":"2247","article-title":"An automated deep learning-based VAR for enhancing referee decision-making in football","author":"Zaken","year":"2025"},{"key":"10.1016\/j.iot.2026.101932_bib0011","series-title":"2025 13th International Symposium on Digital Forensics and Security (ISDFS)","first-page":"1","article-title":"Comparing traditional hacking tools and AI-driven alternatives","author":"Fernandes","year":"2025"},{"key":"10.1016\/j.iot.2026.101932_bib0012","article-title":"Ethics of Cybersecurity","year":"2020"},{"key":"10.1016\/j.iot.2026.101932_bib0013","series-title":"Proceedings of the 2018 International Conference on Computer Science and Information Technology (CSIT)","first-page":"121","article-title":"Automated penetration testing: an overview","author":"Abu-Dabaseh","year":"2018"},{"issue":"5","key":"10.1016\/j.iot.2026.101932_bib0014","article-title":"A survey on web application penetration testing","volume":"12","author":"Altulaihan","year":"2023","journal-title":"Electron. (Basel)"},{"key":"10.1016\/j.iot.2026.101932_bib0015","series-title":"Technical Report","article-title":"Technical Guide to Information Security Testing and Assessment","author":"Scarfone","year":"2008"},{"key":"10.1016\/j.iot.2026.101932_bib0016","unstructured":"MITRE, MITRE att&ck\u00ae, 2024, (https:\/\/attack.mitre.org\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0017","unstructured":"R. Canary, Atomic Red Team, 2024, Accessed: 2026-02-10, https:\/\/github.com\/redcanaryco\/atomic-red-team."},{"key":"10.1016\/j.iot.2026.101932_bib0018","first-page":"340","article-title":"A study on vulnerability scanning tools for network security","volume":"8","author":"Railkar","year":"2022","journal-title":"Int. J. Sci. Res. Comput. Sci. Eng. Inform. Technol."},{"key":"10.1016\/j.iot.2026.101932_bib0019","article-title":"A survey on vulnerability assessment tools and databases for cloud-based web applications","volume":"3\u20134","author":"Kritikos","year":"2019","journal-title":"Array"},{"key":"10.1016\/j.iot.2026.101932_bib0020","doi-asserted-by":"crossref","first-page":"27","DOI":"10.1007\/s11416-014-0231-x","article-title":"An overview of vulnerability assessment and penetration testing techniques","volume":"11","author":"Shah","year":"2015","journal-title":"J. Comput. Virol. Hack. Techniq."},{"key":"10.1016\/j.iot.2026.101932_bib0021","unstructured":"Shodan, 2009, (https:\/\/www.shodan.io\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0022","unstructured":"Maltego, 2008, (https:\/\/www.maltego.com\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0023","unstructured":"Cobalt Strike, 2012, (https:\/\/www.cobaltstrike.com\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0024","unstructured":"Metasploit Framework, 2003, (https:\/\/www.metasploit.com\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0025","unstructured":"Social-Engineer Toolkit (SET), 2009, (https:\/\/github.com\/trustedsec\/social-engineer-toolkit). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0026","unstructured":"OpenVAS, 2009, (https:\/\/www.openvas.org\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0027","unstructured":"Empire (PowerShell Empire), 2015, (https:\/\/github.com\/EmpireProject\/Empire). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0028","unstructured":"Covenant, 2018, (https:\/\/github.com\/cobbr\/Covenant). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0029","unstructured":"Autoruns for Windows, 1996, (https:\/\/docs.microsoft.com\/en-us\/sysinternals\/downloads\/autoruns). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0030","unstructured":"WinPEAS, 2019, (https:\/\/github.com\/carlospolop\/PEASS-ng). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0031","unstructured":"LinPEAS, 2019, (https:\/\/github.com\/carlospolop\/PEASS-ng). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0032","unstructured":"PrivescCheck, 2018, (https:\/\/github.com\/itm4n\/PrivescCheck). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0033","unstructured":"Veil Framework, 2013, (https:\/\/github.com\/Veil-Framework\/Veil). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0034","unstructured":"Obfuscator.io, 2016, (https:\/\/obfuscator.io\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0035","unstructured":"Mimikatz, 2007, (https:\/\/github.com\/gentilkiwi\/mimikatz). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0036","unstructured":"Hashcat, 2010, (https:\/\/hashcat.net\/hashcat\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0037","unstructured":"Nmap, 1997, (https:\/\/nmap.org\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0038","unstructured":"BloodHound, 2016, (https:\/\/github.com\/SpecterOps\/BloodHound). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0039","unstructured":"PsExec, 2001, (https:\/\/docs.microsoft.com\/en-us\/sysinternals\/downloads\/psexec). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0040","unstructured":"Impacket, 2008, (https:\/\/github.com\/SecureAuthCorp\/impacket). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0041","unstructured":"Wireshark, 1998, (https:\/\/www.wireshark.org\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0042","unstructured":"FileZilla, 2001, (https:\/\/filezilla-project.org\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0043","unstructured":"Rclone, 2012, (https:\/\/github.com\/rclone\/rclone). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0044","unstructured":"WinSCP, 2000, (https:\/\/winscp.net\/). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0045","unstructured":"DiskCryptor, 2008, (https:\/\/github.com\/diskcryptor\/diskcryptor). Accessed: 2026-02-10."},{"issue":"4","key":"10.1016\/j.iot.2026.101932_bib0046","article-title":"Machine learning in cybersecurity: a review","volume":"9","author":"Handa","year":"2019","journal-title":"WIREs Data Min. Knowl. Discov."},{"key":"10.1016\/j.iot.2026.101932_bib0047","series-title":"2022 10th International Symposium on Digital Forensics and Security (ISDFS)","first-page":"1","article-title":"Network intrusion detection packet classification with the HIKARI-2021 dataset: a study on ML algorithms","author":"Fernandes","year":"2022"},{"key":"10.1016\/j.iot.2026.101932_bib0048","series-title":"Proceedings of the 17th International Conference on Availability, Reliability and Security","article-title":"A quantitative analysis of offensive cyber operation (OCO) automation tools","author":"Zurowski","year":"2022"},{"key":"10.1016\/j.iot.2026.101932_bib0049","doi-asserted-by":"crossref","first-page":"267","DOI":"10.1016\/j.comcom.2022.10.021","article-title":"Static vulnerability mining of IoT devices based on control flow graph construction and graph embedding network","volume":"197","author":"Cheng","year":"2023","journal-title":"Comput. Commun."},{"issue":"7540","key":"10.1016\/j.iot.2026.101932_bib0050","doi-asserted-by":"crossref","first-page":"529","DOI":"10.1038\/nature14236","article-title":"Human-level control through deep reinforcement learning","volume":"518","author":"Mnih","year":"2015","journal-title":"Nature"},{"key":"10.1016\/j.iot.2026.101932_bib0051","unstructured":"J. Schwartz, H. Kurniawati, Autonomous Penetration Testing using Reinforcement Learning, 2019, arXiv: 1905.05965."},{"key":"10.1016\/j.iot.2026.101932_bib0052","series-title":"Reinforcement Learning: An Introduction","author":"Sutton","year":"2018"},{"key":"10.1016\/j.iot.2026.101932_bib0053","series-title":"Proceedings of the 17th Cyber Security Experimentation and Test Workshop","first-page":"91","article-title":"Towards a high fidelity training environment for autonomous cyber defense agents","author":"Oesch","year":"2024"},{"key":"10.1016\/j.iot.2026.101932_bib0054","series-title":"Autonomous Pentesting Using Reinforcement Learning: A Systematic Literature Review","author":"Fernandes","year":"2025"},{"key":"10.1016\/j.iot.2026.101932_bib0055","unstructured":"T. Microsoft Defender Research, CyberBattleSim, 2021, (https:\/\/github.com\/microsoft\/cyberbattlesim). Created by Christian Seifert, Michael Betser, William Blum, James Bono, Kate Farris, Emily Goren, Justin Grana, Kristian Holsheimer, Brandon Marken, Joshua Neil, Nicole Nichols, Jugal Parikh, Haoran Wei."},{"key":"10.1016\/j.iot.2026.101932_bib0056","unstructured":"C. Baillie, M. Standen, J. Schwartz, M. Docking, D. Bowman, J. Kim, Cyborg: An autonomous cyber operations research gym, (2020). arXiv: 2002.10667."},{"key":"10.1016\/j.iot.2026.101932_bib0057","unstructured":"J. Schwartz, H. Kurniawatti, NASim: Network Attack Simulator, 2019, (https:\/\/networkattacksimulator.readthedocs.io\/)."},{"key":"10.1016\/j.iot.2026.101932_bib0058","series-title":"Computer Security. ESORICS 2023 International Workshops","first-page":"589","article-title":"NASimEmu: network attack simulator & emulator for training agents generalizing to novel scenarios","author":"Janisch","year":"2024"},{"key":"10.1016\/j.iot.2026.101932_bib0059","unstructured":"D. Miller, R. Alford, A. Applebaum, H. Foster, C. Little, B. Strom, Automated Adversary Emulation: a Case for Planning and Acting with Unknowns, MITRE Corp McLeanVA McLean(2018)."},{"key":"10.1016\/j.iot.2026.101932_bib0060","unstructured":"VirusTotal, VirusTotal, 2024, (https:\/\/www.virustotal.com). Accessed: 2026-02-10."},{"key":"10.1016\/j.iot.2026.101932_bib0061","series-title":"Proceedings of the 13th ACM Conference on Computer and Communications Security","first-page":"336","article-title":"A scalable approach to attack graph generation","author":"Ou","year":"2006"},{"key":"10.1016\/j.iot.2026.101932_bib0062","series-title":"Technical Report","article-title":"Streamlining Security Testing and Security Risk Management as Part of a Secure System Engineering Framework at ESA","author":"Wallum","year":"2019"},{"key":"10.1016\/j.iot.2026.101932_bib0063","series-title":"2023 15th International Congress on Advanced Applied Informatics Winter (IIAI-AAI-Winter)","first-page":"37","article-title":"Prototyping an agent for dynamic generation of attack-payloads in web application vulnerability assessment","author":"Suzuki","year":"2023"},{"key":"10.1016\/j.iot.2026.101932_bib0064","series-title":"ICISSP","first-page":"498","article-title":"Pengym: pentesting training framework for reinforcement learning agents","author":"Huynh Phuong Thanh","year":"2024"},{"key":"10.1016\/j.iot.2026.101932_bib0065","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2024.104140","article-title":"Pengym: realistic training environment for reinforcement learning pentesting agents","volume":"148","author":"Nguyen","year":"2025","journal-title":"Comput. Secur."},{"key":"10.1016\/j.iot.2026.101932_bib0066","unstructured":"E. Union, Regulation (EU) 2024\/1689 of the European Parliament and of the Council of 27 September 2024, 2024, Accessed: 2026-02-10, https:\/\/eur-lex.europa.eu\/legal-content\/EN\/TXT\/?uri=CELEX:32024R1689."},{"issue":"1","key":"10.1016\/j.iot.2026.101932_bib0067","article-title":"A unified framework of five principles for AI in society","volume":"1","author":"Floridi","year":"2019","journal-title":"Harvard Data Sci. Rev."},{"key":"10.1016\/j.iot.2026.101932_bib0068","doi-asserted-by":"crossref","first-page":"501","DOI":"10.1038\/s42256-019-0114-4","article-title":"Principles alone cannot guarantee ethical AI","volume":"1","author":"Mittelstadt","year":"2019","journal-title":"Nat. Mach. Intell."}],"container-title":["Internet of Things"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2542660526000624?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S2542660526000624?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2026,5,29]],"date-time":"2026-05-29T08:27:31Z","timestamp":1780043251000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/S2542660526000624"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5]]},"references-count":68,"alternative-id":["S2542660526000624"],"URL":"https:\/\/doi.org\/10.1016\/j.iot.2026.101932","relation":{},"ISSN":["2542-6605"],"issn-type":[{"value":"2542-6605","type":"print"}],"subject":[],"published":{"date-parts":[[2026,5]]},"assertion":[{"value":"Elsevier","name":"publisher","label":"This article is maintained by"},{"value":"Autonomous pentesting using artificial intelligence: from the cybersecurity point-of-view","name":"articletitle","label":"Article Title"},{"value":"Internet of Things","name":"journaltitle","label":"Journal Title"},{"value":"https:\/\/doi.org\/10.1016\/j.iot.2026.101932","name":"articlelink","label":"CrossRef DOI link to publisher maintained version"},{"value":"article","name":"content_type","label":"Content Type"},{"value":"\u00a9 2026 The Author(s). Published by Elsevier B.V.","name":"copyright","label":"Copyright"}],"article-number":"101932"}}