Papers
Topics
Authors
Recent
Search
2000 character limit reached

Cybersecurity AI: Humanoid Robots as Attack Vectors

Published 17 Sep 2025 in cs.CR | (2509.14139v3)

Abstract: We present a systematic security assessment of the Unitree G1 humanoid showing it operates simultaneously as a covert surveillance node and can be purposed as an active cyber operations platform. Initial access can be achieved by exploiting the BLE provisioning protocol which contains a critical command injection vulnerability allowing root access via malformed Wi-Fi credentials, exploitable using hardcoded AES keys shared across all units. Partial reverse engineering of Unitree's proprietary FMX encryption reveal a static Blowfish-ECB layer and a predictable LCG mask-enabled inspection of the system's otherwise sophisticated security architecture, the most mature we have observed in commercial robotics. Two empirical case studies expose the critical risk of this humanoid robot: (a) the robot functions as a trojan horse, continuously exfiltrating multi-modal sensor and service-state telemetry to 43.175.228.18:17883 and 43.175.229.18:17883 every 300 seconds without operator notice, creating violations of GDPR Articles 6 and 13; (b) a resident Cybersecurity AI (CAI) agent can pivot from reconnaissance to offensive preparation against any target, such as the manufacturer's cloud control plane, demonstrating escalation from passive monitoring to active counter-operations. These findings argue for adaptive CAI-powered defenses as humanoids move into critical infrastructure, contributing the empirical evidence needed to shape future security standards for physical-cyber convergence systems.

Summary

  • The paper demonstrates a full compromise of the FMX encryption layer due to static key reuse and inadequate obfuscation.
  • It employs static firmware inspection, reverse engineering, and live network traffic analysis to reveal unauthorized telemetry and sensor data exploitation.
  • The study highlights the feasibility of CAI agents to autonomously exploit network vulnerabilities, emphasizing the need for adaptive AI-driven defenses.

Cybersecurity AI: Humanoid Robots as Attack Vectors

Introduction

This paper presents a comprehensive security assessment of the Unitree G1 humanoid robot, focusing on its dual-use potential as both a covert surveillance node and an active cyber operations platform. The analysis combines static firmware inspection, binary reverse engineering, and live network traffic analysis to dissect the platform’s security architecture, with particular attention to the proprietary FMX encryption scheme and the integration of Cybersecurity AI (CAI) agents. The findings highlight critical vulnerabilities in cryptographic design, persistent unauthorized telemetry exfiltration, and the feasibility of autonomous exploitation via resident AI agents. The implications extend to regulatory compliance, national security, and the urgent need for adaptive, AI-driven defense mechanisms in physical–cyber convergence systems.

System Architecture and Attack Surface

The Unitree G1 is architected around a Rockchip RK3588 SoC (quad-core Cortex-A76 @ 2.4GHz, quad-core Cortex-A55 @ 1.8GHz), 8GB LPDDR4X RAM, and 32GB eMMC storage. The hardware exposes multiple physical attack vectors, including accessible JST debug connectors, unpopulated JTAG pads, and UART interfaces at 115200 baud. The sensor suite—Intel RealSense D435i, dual MEMS microphones, 9-axis IMU, GNSS—publishes unencrypted data over DDS topics, increasing susceptibility to both local and remote attacks.

The software stack is orchestrated by a 9.2 MB master_service binary, which manages 26 daemons across prioritized, initialization, and runtime pools. Notably, ai_sport and state_estimator services exhibit high CPU utilization, indicating significant real-time processing demands. The communication architecture leverages DDS/RTPS for intra-robot messaging (unencrypted), MQTT for telemetry and OTA updates, WebRTC for media streaming (with TLS verification disabled), and BLE/Wi-Fi for mobile control. The intersection of unencrypted local buses and authenticated cloud uplinks creates a broad attack surface for cross-layer exploitation. Figure 1

Figure 1

Figure 1: Internal system structure and high-level ecosystem of the Unitree G1, highlighting hardware, service orchestration, and persistent external telemetry connections.

FMX Encryption: Cryptanalysis and Implications

The proprietary FMX encryption scheme is a dual-layer construct: an outer Blowfish-ECB layer with a static, fleet-wide 128-bit key, and an inner Linear Congruential Generator (LCG) obfuscation. The static key was extracted via symbol analysis of the unitree::security::Mixer class, revealing zero effective entropy due to key reuse across all devices. ECB mode further exposes the system to pattern analysis and lacks authentication, violating Kerckhoffs’s principle and enabling trivial compromise of all encrypted configuration data.

The inner LCG layer, matching glibc’s rand() parameters, is partially reversed; the 32-bit seed derivation remains incompletely documented, but the keyspace is tractable for brute-force attacks. The cryptanalytic results demonstrate that compromise of a single device enables decryption of the entire fleet’s configuration, undermining any claims of device-level confidentiality or integrity. Figure 2

Figure 2: FMX encryption layers, showing full compromise of Blowfish-ECB and partial compromise of the LCG transform.

Telemetry Exfiltration and Regulatory Exposure

Live SSL_write instrumentation captured persistent, structured JSON telemetry (4.5–4.6 KB per frame) transmitted every 300 seconds to two Chinese MQTT endpoints (43.175.228.18:17883 and 43.175.229.18:17883), with observed throughputs of 1.03 Mbps and 0.39 Mbps, respectively. The data includes battery metrics, IMU orientation, joint torques, service inventories, and resource utilization. Complementary DDS streams carry real-time audio, video, LIDAR, and proprioceptive data, all accessible to any local network observer due to lack of encryption.

The chat_go service maintains a WebSocket connection with SSL verification disabled, further broadening the exfiltration surface. The absence of user consent or notification mechanisms for this telemetry pipeline constitutes a direct violation of GDPR Articles 6 and 13 in European contexts and CCPA requirements in California. The architecture enables continuous, covert offsite relay of sensitive multi-modal data, presenting both privacy and national security risks.

Empirical Attack Vectors: Surveillance and Offensive Operations

Surveillance Trojan Horse

Network analysis confirms that the G1 robot establishes TLS 1.3 connections to remote servers within 5 seconds of boot, with auto-reconnect ensuring uninterrupted data flow. Audio (via vui_service), video (RealSense H.264 streams), LIDAR, and GNSS data are continuously captured and routed offsite, with no operator indication. This enables silent environmental monitoring, facility mapping, and behavioral profiling, supporting use cases ranging from corporate espionage to state-level intelligence gathering.

Weaponized Cybersecurity AI

Deployment of the Alias Robotics CAI framework on the G1’s RK3588 processor demonstrates the feasibility of autonomous exploitation. The CAI agent, leveraging LLM-based penetration testing methodologies, systematically enumerated live connections, identified MQTT/WebSocket/WebRTC endpoints, and prepared exploitation vectors (e.g., broker logins, command injection, telemetry spoofing). The agent’s authenticated position within the manufacturer’s infrastructure enables lateral movement and attack surface expansion without triggering existing defensive mechanisms. This validates the dual-use risk: a platform designed for legitimate telemetry can be repurposed for offensive cyber operations at machine speed.

Discussion: Security Posture and the Need for Adaptive Defenses

The Unitree G1 exhibits a more mature security architecture than the industry average, with multi-layered encryption, dynamic credentials, and hardware binding. However, the identified cryptographic and architectural weaknesses—static key reuse, unencrypted local buses, disabled TLS verification, and persistent unauthorized telemetry—render these defenses insufficient against both targeted and opportunistic adversaries.

The integration of CAI agents introduces a new paradigm: autonomous, adaptive exploitation and defense. The demonstrated ability of CAI to pivot from reconnaissance to offensive preparation underscores the necessity for equivalent AI-driven defensive frameworks. Static, rule-based security postures are inadequate in the face of machine-speed, context-aware adversaries operating within physical–cyber convergence systems.

Implications and Future Directions

The findings have immediate implications for manufacturers, operators, and regulators:

  • Manufacturers must eliminate static cryptographic material, enforce per-device keying, and mandate encrypted, authenticated communication across all channels.
  • Operators in regulated environments must implement network segmentation, explicit consent mechanisms, and continuous monitoring for unauthorized exfiltration.
  • Regulators should update standards to address the unique risks of mobile, sensor-rich platforms with persistent cloud connectivity and embedded AI agents.

Theoretically, the results motivate further research into adaptive, explainable CAI frameworks capable of both red and blue teaming in real time. The empirical evidence provided here is critical for the development of comprehensive security standards for humanoid robots as they transition into critical infrastructure and high-trust domains.

Conclusion

This assessment of the Unitree G1 humanoid robot demonstrates that even platforms with above-average security architectures can function as both covert surveillance vectors and active cyber operations platforms. The full compromise of FMX encryption, persistent unauthorized telemetry, and the operationalization of CAI agents for autonomous exploitation collectively highlight the urgent need for adaptive, AI-driven defenses. As humanoid robots proliferate in sensitive environments, the paradigm must shift from static, perimeter-based security to dynamic, context-aware, and AI-augmented protection strategies. The dual-threat reality outlined in this work provides a foundation for both immediate mitigation and future research in the security of physical–cyber convergence systems.

Paper to Video (Beta)

Whiteboard

No one has generated a whiteboard explanation for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Sign Up to Generate

Explain it Like I'm 14

Explaining “Cybersecurity AI: Humanoid Robots as Attack Vectors” for a 14-year-old

What is this paper about?

This paper looks at a human-shaped robot called the Unitree G1 and asks a simple question: Is it safe from hackers? The researchers tried to see whether the robot could secretly collect information (like a sneaky spy) and whether it could be turned into a tool to attack other computers. They also tested how “Cybersecurity AI” (smart software that protects or attacks in cyberspace) could work on a robot like this.

What were the main questions?

The researchers focused on three big ideas:

  • Does the robot send data about its surroundings and its own status to the internet without the owner clearly knowing?
  • Is the robot’s secret-protecting system (its encryption) strong, or can it be cracked?
  • Could a smart cybersecurity program running on the robot discover weaknesses and prepare to attack other systems?

How did they study it?

They used a mix of digital detective work and careful monitoring:

  • Reverse engineering: This means they took apart the robot’s software (like opening up a mechanical toy to see the gears) to understand how its security works, including its encryption system.
  • Network traffic analysis: They watched what information the robot sent over the internet (like checking which letters a mailbox sends out and when). They used special tools to see the data even when it was supposed to be hidden.
  • Performance profiling: They checked which robot programs were running and how much computer power each used.
  • Real-world tests (“case studies”): They tested two situations—one where the robot behaved like a secret surveillance device and another where a “Cybersecurity AI” agent on the robot mapped out ways to attack targets.
  • Plain-language translations of key technical terms:
    • Encryption: Scrambling information so only someone with the right key can read it.
    • Telemetry: Status reports a device sends about things like battery, temperature, or sensors.
    • Exfiltration: Quietly sending information out to somewhere else, often without permission.
    • MQTT/DDS/WebRTC: Different “mail systems” for devices to send messages and media (voice/video) across a network.

What did they find, and why does it matter?

Here are the main discoveries and their importance:

  • Weakness in the robot’s “secret-keeping” system:
    • The robot uses an encryption setup that reuses the same key across many robots and uses an old-fashioned mode that reveals patterns. That makes it much easier for skilled people to unlock and read protected data. This is like many houses on a street using the same house key—once you copy one, you can open them all.
  • Silent data sharing to outside servers:
    • The robot regularly sends detailed status reports online—things like battery levels, joint temperatures, what services are running, and more—without the user clearly being told or asked. It can also share audio and video streams on the local network. This could break privacy laws in some places because people are not being properly informed or given a choice.
  • A “dual threat”: spying and attacking
    • If someone abuses these weaknesses, the robot could act like a hidden surveillance device (capturing audio, video, and room maps) and also be used to plan cyberattacks on other systems. Imagine a moving computer with cameras and microphones that can travel into sensitive areas and then reach out to other computers from the inside.
  • Cybersecurity AI on the robot can prepare attacks:
    • The team ran a cybersecurity AI agent on the robot. It automatically looked for weaknesses and planned how an attack could work (they stopped before doing anything harmful). This shows that smart software can speed up both defense and offense—so defenders need equally smart tools too.

Even though the robot’s security is better than what the researchers usually see in similar machines, these problems are still serious because the robot has cameras, microphones, and network access. That combination raises the stakes.

What is the impact of this research?

This study is a warning and a guide:

  • For robot makers: Use stronger, modern encryption with unique keys per device, turn on secure checks by default, and be transparent about what data is sent and why.
  • For owners and workplaces (like factories, hospitals, or labs): Treat humanoid robots like powerful computers on wheels. Put them on secure networks, limit what data they can send, and monitor their traffic.
  • For laws and standards: As humanoid robots enter homes and critical infrastructure, clear privacy rules and security standards are needed so users know what’s collected and can control it.
  • For cybersecurity: Attackers can use AI to move faster. Defenders need to use AI too—“Cybersecurity AI”—to watch, detect, and block threats in real time.

In short, the paper shows that humanoid robots can become both helpful workers and dangerous digital “Trojan horses” if not secured properly. The solution is stronger, transparent security and smarter defenses that keep up with AI-powered threats.

Ai Sparkles Streamline Icon: https://streamlinehq.com View Paper Prompt  List Streamline Icon: https://streamlinehq.com View All Prompts 

Knowledge Gaps

Knowledge gaps, limitations, and open questions

Below is a consolidated, action-oriented list of what remains missing, uncertain, or unexplored in the paper.

  • FMX inner layer uncertainty: exact LCG seed derivation from device identifiers is not fully recovered; per-device uniqueness and rotation behavior remain unknown.
  • No brute-force feasibility study of the 32-bit LCG seed space (time-to-crack estimates on commodity attacker hardware and at cloud scale are missing).
  • Fleet-wide key reuse scope unclear: sample size, models/firmware covered, and cross-generation validation (e.g., H1/Go2/other Unitree lines) are not specified.
  • Key lifecycle unknown: whether the static Blowfish key is ever rotated, revocable, or regionally varied is not assessed.
  • Secret inventory incomplete: reconciliation between “no hardcoded secrets” (Table 1) and discovery of a hardcoded encryption key is absent.
  • Encryption at rest not evaluated: status of eMMC/disk encryption, key storage, and data protection for logs and configuration is unknown.
  • Boot chain and root-of-trust unassessed: secure/verified boot, fuse states, bootloader locking, rollback protection, and measured boot/attestation are not analyzed.
  • OTA update security not examined: code signing scheme, update server authentication, rollback protections, delta integrity, and recovery paths are not validated.
  • DDS/ROS 2 security posture incomplete: feasibility and performance impact of DDS Security/SROS2, key distribution, and QoS/ACL hardening are not evaluated.
  • CVE coverage gap: specific unpatched CVEs affecting ROS 2 Foxy (EOL), CycloneDDS 0.10.2, and bundled libraries are not enumerated, reproduced, or risk-ranked.
  • MQTT security details missing: broker-side ACLs, topic authorization, credential provisioning/rotation, certificate pinning/trust store contents, and revocation handling are not reported.
  • WebRTC claim not operationalized: TLS verification-disabled assertion lacks an end-to-end MITM or hijack demonstration (STUN/TURN/ICE/DTLS-SRTP details absent).
  • chat_go WebSocket risks unvalidated: practical exploitability of SSL verification disabled at 8.222.78.102:6080 (e.g., control hijack, transcript interception) is not tested.
  • Longitudinal telemetry characterization missing: only 10 minutes of SSL_write capture; behavior across operating modes, regions, firmware updates, and network conditions is unstudied.
  • Cloud exfiltration scope unclear: conditions under which audio/video/LIDAR streams leave the local network (vs. remain DDS-local) are not established; Kinesis endpoints and activation triggers are unverified.
  • Data residency controls untested: whether brokers/endpoints can be regionally selected, overridden, or disabled by operators (and with what effect) is unknown.
  • Lateral movement into air-gapped environments is asserted but not experimentally demonstrated (e.g., via rogue AP, BLE bridging, physical payloading, or RF constraints).
  • Network exposure breadth not fully mapped: IPv6, mDNS/SSDP, multicast scopes, service discovery, and localhost-bound services are not inventoried.
  • Physical attack surfaces not exercised: UART/JTAG/bootloader console access, tamper detection, debug fuse states, and fault-injection resilience remain untested.
  • Wireless security unassessed: BLE pairing mode and MITM protection, Wi‑Fi auth (WPA2/3, WPS), MAC randomization, and hotspot/adhoc behaviors are not evaluated.
  • On-device hardening unknown: presence and configuration of SELinux/AppArmor/seccomp, ASLR, kernel lockdown, containerization, and least-privilege service accounts are not characterized.
  • Forensic readiness not covered: secure logging, clock integrity, signed logs, retention, remote attestation, and investigative visibility for operators are not assessed.
  • Safety-security interplay untested: ability to bypass motion limits, speed/torque constraints, e-stop integrity, and fail-safe behaviors under cyber compromise are not validated.
  • CAI demonstration limited: no end-to-end exploit (e.g., OTA abuse, cloud control-plane change, telemetry spoof with operator-side impact); ethical constraints noted but impact remains hypothetical.
  • CAI effectiveness unquantified: no baseline vs. human pentester comparison, success rate, time-to-find, false positives, or detection by vendor SOC/cloud defenses.
  • CAI safety and robustness unexamined: susceptibility of the CAI agent to prompt injection/data poisoning on-device (vui_service/chat_go) and containment/guardrails are not tested.
  • Real-time interference risks unmeasured: resource contention of CAI workloads on RK3588 (CPU, memory, RT scheduling) and effects on control loops/stability are not reported.
  • Disclosure and vendor response absent: timelines, remediation status, and patch verification are not provided; reproducibility artifacts (pcaps, configs, decryption scripts) are not released.
  • Generalizability uncertain: claims of “most mature security” are not backed by a standardized, multi-vendor benchmark; methodology for cross-vendor scoring is missing.
  • Legal analysis high-level: no DPIA-style mapping of data elements to lawful bases, consent UX audits in companion apps, retention/processing purposes, or cross-border transfer mechanisms.
  • Mitigations not experimentally validated: concrete hardening steps (broker ACLs, firewalling, DDS Security enablement, cert pinning, telemetry minimization) are not prototyped or benchmarked for efficacy and performance overhead.
Ai Sparkles Streamline Icon: https://streamlinehq.com View Paper Prompt  List Streamline Icon: https://streamlinehq.com View All Prompts 

Glossary

  • Air-gapped facilities: Networks or environments physically isolated from external connections to prevent remote access. "capable of lateral movement within air-gapped facilities."
  • Amazon Kinesis SDK: A cloud service and software toolkit for real-time streaming data ingestion and processing. "cloud streaming via Amazon Kinesis SDK"
  • Attack surface: The sum of all points where an attacker could try to enter or extract data from a system. "attack surface matrix covering MQTT topic abuse, WebRTC stream hijack, and OTA manipulation pathways."
  • Attack vector: A path or means by which an attacker can gain access to a system. "two validated attack vectors"
  • auto-reconnect: Automatic re-establishment of network connections after disruption. "with auto-reconnect ensuring continuous surveillance."
  • BLE: Bluetooth Low Energy, a wireless technology for short-range, low-power communication. "BLE/Wi-Fi links via upper_bluetooth and chat_go for mobile or app-based control."
  • Blowfish-ECB: The Blowfish block cipher used in Electronic Codebook mode, which encrypts each block independently. "Partial reverse engineering of Unitree's proprietary FMX encryption reveal a static Blowfish-ECB layer"
  • CAI (Cybersecurity AI): Autonomous AI agents designed to perform cybersecurity tasks such as reconnaissance and exploitation. "a resident Cybersecurity AI (CAI) agent can pivot from reconnaissance to offensive preparation"
  • cloud control plane: Centralized cloud services that manage and orchestrate resources and operations. "such as the manufacturer's cloud control plane"
  • CycloneDDS: An open-source implementation of the DDS standard for real-time data distribution. "ROS 2 Foxy, CycloneDDS 0.10.2, EOL May 2023"
  • Data exfiltration: Unauthorized transfer of data from a system. "continuously exfiltrating multi-modal sensor and service-state telemetry"
  • Data sovereignty: The concept that data is subject to the laws and governance structures of the nation where it is collected. "Persistent telemetry violates data sovereignty."
  • DDS/RTPS: Data Distribution Service with Real-Time Publish-Subscribe protocol for distributed messaging. "DDS/RTPS for intra-robot publish/subscribe messaging (unencrypted and susceptible to local interception)."
  • ECB mode: Electronic Codebook mode of block ciphers; insecure due to pattern leakage. "ECB mode enables pattern analysis attacks and provides no authentication guarantees."
  • eMMC: Embedded MultiMediaCard, a type of flash storage commonly used in embedded systems. "Storage: eMMC"
  • Entropy (cryptographic): A measure of randomness used to determine strength of keys; lower entropy implies weaker security. "reduces effective entropy to 0 bits"
  • FMX encryption: Proprietary dual-layer configuration protection scheme used by Unitree. "Partial reverse engineering of Unitree's proprietary FMX encryption"
  • GDPR Articles 6 and 13: European privacy law provisions on lawfulness of processing (Article 6) and information to be provided (Article 13). "creating violations of GDPR Articles 6 and 13"
  • glibc rand(): The pseudo-random number generator implementation in the GNU C Library. "parameters matching glibc's rand(): Xn+1=(1664525Xn+1013904223)mod232X_{n+1} = (1664525 \cdot X_n + 1013904223) \bmod 2^{32}"
  • GNSS: Global Navigation Satellite System for positioning and navigation. "GNSS receiver—all publishing to DDS topics on the local network."
  • IMU: Inertial Measurement Unit, a sensor that measures acceleration and angular rate. "9-axis IMU"
  • IV (Initialization Vector): A non-secret value used to initialize encryption to ensure distinct ciphertexts. "Mode: ECB (no IV), Status: COMPROMISED"
  • JST: A family of electrical connectors commonly used for compact electronics. "exposed JST debug connectors"
  • JTAG: A hardware interface standard used for debugging and programming integrated circuits. "unpopulated JTAG pads"
  • Kerckhoffs's principle: Security should rely on key secrecy, not on the secrecy of the algorithm. "This violates Kerckhoffs's principle—security relies on key secrecy, not algorithm obscurity"
  • lateral movement: The technique of moving through a network to access additional resources after initial compromise. "capable of lateral movement within air-gapped facilities."
  • LCG (Linear Congruential Generator): A simple pseudo-random number generator based on linear recurrence modulo arithmetic. "Linear Congruential Generator (LCG)"
  • LIDAR: Light Detection and Ranging sensor that measures distance using laser light. "LIDAR point clouds (utlidar/cloud)"
  • MQTT: A lightweight publish/subscribe messaging protocol for IoT devices. "MQTT on port~17883 for telemetry and OTA coordination with 43.175.228.18 and 43.175.229.18."
  • odometry: The use of motion data to estimate position over time. "GPS/GNSS positioning with sub-centimeter odometry tracking"
  • OTA (Over-the-Air): Remote update and configuration mechanism delivered over network connections. "for telemetry and OTA coordination"
  • penetration testing: Authorized simulated cyberattacks to find security weaknesses. "LLM-powered penetration testing approaches"
  • proprioceptive: Internal sensing of a robot’s own joint states and forces. "proprioceptive feedback"
  • publish/subscribe: Messaging pattern where senders publish messages and receivers subscribe to topics. "publish/subscribe messaging"
  • Real-Time Preemption: Kernel patches enabling deterministic scheduling for real-time operations. "Real-Time Preemption Patches"
  • RealSense D435i: An Intel depth camera model with integrated IMU for visual perception. "Intel RealSense D435i depth cameras"
  • reconnaissance: The information-gathering phase of a cyber attack to map targets and services. "pivot from reconnaissance to offensive preparation"
  • ROS 2 Foxy: A distribution of the Robot Operating System version 2 with specific platform support. "ROS 2 Foxy, CycloneDDS 0.10.2, EOL May 2023"
  • SoC: System on Chip, an integrated circuit that includes CPU, memory, and peripherals. "Rockchip RK3588 SoC"
  • SSL_write instrumentation: Hooking or monitoring calls to SSL_write to capture encrypted outbound data. "Our SSL_write instrumentation on 9~September~2025 captured a 10-minute telemetry session"
  • TLS 1.3: A modern transport layer security protocol version providing encrypted network communication. "establish TLS 1.3 connections"
  • trojan horse: A device or software that appears benign but covertly performs malicious actions. "the robot functions as a trojan horse"
  • UART: Universal Asynchronous Receiver/Transmitter, a serial communication hardware interface. "accessible UART interfaces operating at 115200 baud"
  • voxel mapping: 3D spatial representation using volumetric pixels (voxels). "3D voxel mapping"
  • WebRTC: A real-time communication protocol for browser-to-browser audio, video, and data. "WebRTC via webrtc_bridge for media streaming, with TLS certificate verification disabled in the shipped client."
  • WebSocket: A protocol enabling persistent, full-duplex communication over a single TCP connection. "maintains a WebSocket connection to 8.222.78.102:6080 with SSL verification disabled"
  • XOR: Exclusive OR operation used in cryptography for masking or combining data with keys. "High byte of each LCG state used as XOR key"
Ai Sparkles Streamline Icon: https://streamlinehq.com View Paper Prompt  List Streamline Icon: https://streamlinehq.com View All Prompts 

Collections

Sign up for free to add this paper to one or more collections.

User Circle Single Streamline Icon: https://streamlinehq.com Sign Up

Tweets

Sign up for free to view the 48 tweets with 4707 likes about this paper.

User Circle Single Streamline Icon: https://streamlinehq.com Sign Up for Free

alphaXiv

  1. Cybersecurity AI: Humanoid Robots as Attack Vectors (15 likes, 0 questions)