From a practical perspective, maybe you are looking at the problem the wrong way around. A lot of prompt engineering seems to be about asking LLMs to play a role. I would try to tell the LLM that it was a hacker and to design an exploit to attack the given system (this is the sort of mental perspective I used to use to find bugs when I was a software engineer). Another common technique is “generate then prune” : Have a separate model/prompt remove all the results of the first one that are only “possibilities”. It seems, from my reading, that this sort of two stage approach can work because it bypasses LLMs typical attempts to “be helpful” by inventing stuff or spouting banal filler rather than just admitting ignorance.
I think we should suspect that they’ve done some basic background research (this individual, not in general), and take the rest of the information about people failing to see improvements as data that also points this direction.
From a practical perspective, maybe you are looking at the problem the wrong way around. A lot of prompt engineering seems to be about asking LLMs to play a role. I would try to tell the LLM that it was a hacker and to design an exploit to attack the given system (this is the sort of mental perspective I used to use to find bugs when I was a software engineer). Another common technique is “generate then prune” : Have a separate model/prompt remove all the results of the first one that are only “possibilities”. It seems, from my reading, that this sort of two stage approach can work because it bypasses LLMs typical attempts to “be helpful” by inventing stuff or spouting banal filler rather than just admitting ignorance.
I think we should suspect that they’ve done some basic background research (this individual, not in general), and take the rest of the information about people failing to see improvements as data that also points this direction.