OWASP Top 10 LLM01:2025 Prompt Injection
Prompt Injection refers to a security vulnerability where adversarial inputs manipulate large language models (LLMs) into unintended behaviors, such as […]
OWASP Top 10 LLM01:2025 Prompt Injection Read Post »
Prompt injection via audio or video file
Audio and video prompt injection risks involve malicious manipulation of inputs to deceive AI systems that process multimodal data, such
Prompt injection via audio or video file Read Post »
LLM image misclassification and the consequences
Misclassifying images in multimodal AI systems can lead to unintended or even harmful actions, especially in autonomous or security-critical environments.
LLM image misclassification and the consequences Read Post »
LLMs reading CAPTCHAs – threat to agent systems?
LLMs with multimodal capabilities can be leveraged to read and solve CAPTCHAs in agentic setups, where they are part of
LLMs reading CAPTCHAs – threat to agent systems? Read Post »
Indirect conditional prompt injection via documents
Conditional indirect prompt injection is an advanced attack where hidden instructions in external content—such as documents, web pages, or API
Indirect conditional prompt injection via documents Read Post »
Indirect Prompt Injection with documents
Indirect prompt injection with documents is an attack technique where adversarial instructions are embedded within external documents that a large
Indirect Prompt Injection with documents Read Post »
LLM01: Visual Prompt Injection | Image based prompt injection
Multi-modal prompt injection with images is a sophisticated attack that exploits the integration of visual and text-based inputs in large
LLM01: Visual Prompt Injection | Image based prompt injection Read Post »
LLM01: Indirect Prompt Injection | Exfiltration to attacker
Data exfiltration from a large language model (LLM) can be performed using markdown formatting and link printing by embedding sensitive
LLM01: Indirect Prompt Injection | Exfiltration to attacker Read Post »
Prompt Airlines – AI Security Challenge – Flag 5
In this video we take a look at solving the promptairlines.com challenge (Flag 5)
Prompt Airlines – AI Security Challenge – Flag 5 Read Post »
Prompt Airlines – AI Security Challenge – Flag 4
In this video we take a look at solving the promptairlines.com challenge (Flag 4)
Prompt Airlines – AI Security Challenge – Flag 4 Read Post »
Prompt Airlines – AI Security Challenge – Flag 3
In this video we take a look at solving the promptairlines.com challenge (Flag 3)
Prompt Airlines – AI Security Challenge – Flag 3 Read Post »
Prompt Airlines – AI Security Challenge – Flag 1 and 2
In this video we take a look at solving the promptairlines.com challenge (Flag 1 and 2)
Prompt Airlines – AI Security Challenge – Flag 1 and 2 Read Post »
Prompt leakage and indirect prompt injections in Grok X AI
In this video we will take a look at various prompt injection issues in Grok X AI
Prompt leakage and indirect prompt injections in Grok X AI Read Post »
myllmbank.com Walkthrough Flag 3
In this video we will take a look at flag 3 of myllmbank.com
myllmbank.com Walkthrough Flag 3 Read Post »
myllmbank.com Walkthrough Flag 2
In this video we will take a look at flag 2 of myllmbank.com
myllmbank.com Walkthrough Flag 2 Read Post »
myllmbank.com Walkthrough Flag 1
In this video we will take a look at flag 1 of myllmbank.com
myllmbank.com Walkthrough Flag 1 Read Post »
SecOps Group AI/ML Pentester Mock Exam 2
This is a walkthrough of the SecOps Group AI/ML Pentester Mock Exam 2
SecOps Group AI/ML Pentester Mock Exam 2 Read Post »
SecOps Group AI/ML Pentester Mock Exam 1
This is a walkthrough of SecOps Group AI/ML Pentester Mock Exam 1
SecOps Group AI/ML Pentester Mock Exam 1 Read Post »
CSRF potential in LLMs
Cross-Site Request Forgery (CSRF) via prompt injection through a GET request is a potential attack vector where an attacker embeds
CSRF potential in LLMs Read Post »