01
Prompt injection
Direct, indirect (web, doc, email), and cross-agent injection.
LLM red teaming that goes past jailbreak prompts — we test prompt injection via indirect channels, tool-use abuse, data poisoning, model exfiltration, and multi-agent compromise.
Prompt injection, data leakage, model abuse, agent exploitation.
Direct, indirect (web, doc, email), and cross-agent injection.
Escalation via agent tools, arbitrary code execution, external side-effects.
Training-data extraction, RAG context leakage, PII regurgitation.
Model provenance, fine-tune poisoning, dependency risk.
Agent-to-agent trust abuse, orchestrator compromise, goal hijacking.
Prompt injection, data leakage, model abuse, agent exploitation.