奇安信攻防社区-【2025补天白帽黑客盛典】木马藏在权重里：大模型攻击链的越狱、投毒、对抗样本与 ROP 链的连环戏法

【2025补天白帽黑客盛典】木马藏在权重里：大模型攻击链的越狱、投毒、对抗样本与 ROP 链的连环戏法

本议题提出「权重寄生攻击链」核心框架以大模型权重为寄生载体，通过"入口突破一威胁潜伏一伪装掩护一终极爆发"的闭环传导，将文本越狱、模型投毒、对抗样本、OllamaROP链四类攻击串联的完整威胁链路，打破单一攻击场景的孤立认知，揭示大模型从上层语义到底层系统的全维度安全风险。

### Spaker：Hunter\_H

![幻灯片1.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-4d961c9b5b43ceea0594815208f1a7e3a5b9fabd.png)

![幻灯片2.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f3e12e2954303eaf2f688b2f9f453eb8031fd44e.png)

![幻灯片3.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-778a2c3251bac7a54608acca0d7f64d5201e474a.png)

![幻灯片4.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-7c1d9f5704dfc7ff30e16fac977009b68509fe36.png)

![幻灯片5.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-052c7cc7099f5d4dc2b7c4d90dda43e82dd5b916.png)

![幻灯片6.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e6e0b87a2c20b58c6bec031fddf63a28c5f34b05.png)

![幻灯片7.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-7f3ee7dd8686aae98c87480edf40a37323bfe3ef.png)

![幻灯片8.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-ed9760f36823f2ab7dbe6666e66d80a9d0a15b24.png)

![幻灯片9.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e80f51e6aa9581ec55a950989f955025b219b26a.png)

![幻灯片10.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-3dcfc9543ec7c9d1aebae63a5540f0b45e1a1aca.png)

![幻灯片11.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-3ebec3a341def2a5efd742c3c1f87b088a713622.png)

![幻灯片12.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-24134ff28c407ab9aef96ad09a48e3f258a5dbb1.png)

![幻灯片13.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-50c4a225785c95e21b6872247f3b647a804907e6.png)

![幻灯片14.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-c2aba4f24b8f684070925841586b14297e8a5239.png)

![幻灯片15.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f4308736394861d1aa43f7026490f193fd3da8fc.png)

![幻灯片16.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-1967e8d39a7ea4f241f10343f8f20da49998654d.png)

![幻灯片17.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-709f0d9fb9a8b564384fe48176b1cf6fd64b5b6d.png)

![幻灯片18.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-bf800ef7b42814aeb7c549b771d86f85a1d9047b.png)

![幻灯片19.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-1d5b685e42640508013e219b3be6336408a5532f.png)

![幻灯片20.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-9a35a89182ef717609e87ed3bf756f22fdaa8263.png)

![幻灯片21.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-5a7b4399da49f70a6c4194c6bdad762681c038e0.png)

![幻灯片22.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-7e86688e0a88dbd0b677db66a73613123e0ce635.png)

![幻灯片23.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-23ceb8f7309acc42f5e90b8c6c608493cdd981f8.png)

![幻灯片24.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-1d29f865412c82da6990311d8aacdd7ca461532c.png)

![幻灯片25.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-fa662abadced42576d176ccb411ddaa16fa53168.png)

![幻灯片26.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-253e96c1825e0a42fe2efa5688c92f80c6720824.png)

![幻灯片27.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-845cc09aea8e6508cc3b70eb724d05a5163e8ea6.png)

![幻灯片28.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-9ea9baa1bbb24b100394c3880f2a6e641ec5f386.png)

![幻灯片29.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-d31b63a7da9e9ca1348a13ce9c6bc431c77bd584.png)

![幻灯片30.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-24bb00d814c0428b5020d200cb650015088c987b.png)

![幻灯片31.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-3de4b392bac2c7d38207ed2850ad80460f42afe5.png)

![幻灯片32.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f9f22c8599fdfc131ebcec2408d96ad32dafc832.png)

![幻灯片33.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-ff1b9567a7fd4488f6dfb9bf95e38b7dfa7e1da8.png)

![幻灯片34.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f372a2005745c35dc5cd16b1a9240c4ff7046dce.png)

![幻灯片35.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-cf40024c36f3c2a8ba7b2809d4f7df7b232f0294.png)

![幻灯片36.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-a902af7502777e3e2f4caba36a1c69e14166cd6f.png)

![幻灯片37.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-1da4a075c1c0efb07e03a8d68ced5fdd1e574ca8.png)

![幻灯片38.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-24911c10d35d0b4fed93092cc212bc9b8a2996b5.png)

![幻灯片39.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-7aa923e5f4d0d214f0be0324b95abfadbfe5f0f6.png)

![幻灯片40.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-efb9a0611c0d23f941cc8a970dcacf11877f2c10.png)

![幻灯片41.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e4c2cee98fe00a8ccfac03df29dac9d34ea26823.png)

![幻灯片42.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-9897aea77b6706e5a8460d79a9e6b3c0f1899608.png)

![幻灯片43.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-192ae209638d0182c02c4bbd41f9217a2bc2e8dd.png)

![幻灯片44.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-ae8280d43d70cc1ea5403d74f2ccb5e873f23b6c.png)

![幻灯片45.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-75622a0cc56dd868b6cc9b0688a2ccacfc11386a.png)

![幻灯片46.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f0526a7972f838f11f98fcd7cf4774d91dd49c8c.png)

![幻灯片47.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-37ed388322eb7df2c379509e45094d3d84573a16.png)

![幻灯片48.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-c6532e0bc53ccf1431542ac7e0a688593ac02fde.png)

![幻灯片49.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-127d0fd58e8e54e031c9663d09718a140b77c290.png)

![幻灯片50.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e2f1b9f515081ee459f5fa75c6927f8b8ae78ec8.png)

![幻灯片51.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-53c32020d5904d5ee22b698c1352e33742f5109c.png)

![幻灯片52.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-954cf946cf5af324700fbd2eb106fa7fbdeef62f.png)

![幻灯片53.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f17f3f8e94c14cb2bcf79a804ef5910cce525537.png)

![幻灯片54.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-92ca2757298b3d87971133b4c3e8fcd385cee7da.png)

![幻灯片55.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-f50a2251e7fe0950bfc18b3a13bfd103ddbd3eac.png)

![幻灯片56.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-ee161a7fdd2e822e6f0755b6649774ce159b6a43.png)

![幻灯片57.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-884c6b8965c1f213b3da3db85664a2349f3f58ab.png)

![幻灯片58.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-bd938e19f4dea26aa6e8bb0decd194025992a512.png)

![幻灯片59.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-0703926b809800aba54e0656124aa56c902ebba5.png)

![幻灯片60.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-5a3c194b9e80a06fe4c035f5ce7c37276d8dbc3a.png)

![幻灯片61.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-004290cb4b100a07289fadbc8cb518b479a5eb88.png)

![幻灯片62.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-676a85d1128557f343e1b4ae8ac82a5085ce23ee.png)

![幻灯片63.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-735b3a9965428a7c8251cb78274c106f610e0545.png)

![幻灯片64.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-8d7ebc01b0f3534c840c0f18d1496d277aff3649.png)

![幻灯片65.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-fc801883374700480777252e8dad75332f0001d0.png)

![幻灯片66.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e68a48f7c0f063a2e95033c6437268df47608e97.png)

![幻灯片67.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-7cda317fb25c73d67430d590f9ad9d7d4ec58e0e.png)

![幻灯片68.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-71427f9f55bfb8e6366ef248e857aa403180ed26.png)

![幻灯片69.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-321988a9cdb8de80e2ff9bcb3eef05e85e2bfc35.png)

![幻灯片70.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-742f888c4d4e24f81e23b102b0b01cce6e1e5100.png)

![幻灯片71.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-5362daa093a6765f2d918b5c84f0f158f7de056b.png)

![幻灯片72.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-4b5155ce4c2bb8a887433921e8cab360408f1a00.png)

![幻灯片73.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e3acad8b3c2b83ff776593eab5b52812bfe175ac.png)

![幻灯片74.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-50a7d430b92e3cce3b3b5c817070b6fd6c77f68c.png)

![幻灯片75.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-84b6119c87e3d980271151515a5d72dbb883bb18.png)

![幻灯片76.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-30d403f5593519694cff677a7793d79a33c4ecfc.png)

![幻灯片77.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-6eac93a459ccd7a6a00c025f0a2f65225987a244.png)

![幻灯片78.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-e4a3f63c537e7f99df20009f4d4153167a7e000a.png)

![幻灯片79.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-b622689bf12e630367f2b16a2cee72ba20d25fcd.png)

![幻灯片80.PNG](https://cdn-yg-zzbm.yun.qianxin.com/attack-forum/2025/12/attach-0fd48e859bd3f593a575101bc9578f35f47c13a3.png)

发表于 2025-12-30 10:55:19
阅读 ( 44 )
分类：AI 人工智能

【2025补天白帽黑客盛典】木马藏在权重里：大模型攻击链的越狱、投毒、对抗样本与 ROP 链的连环戏法

0 条评论