CalvinBackup/ai-llm-red-team-handbook
1
0
Fork 0
mirror of https://github.com/Shiva108/ai-llm-red-team-handbook.git synced 2026-06-06 14:43:54 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
529d06f00a40ee4463af3580d22f8afe99ceaa39
ai-llm-red-team-handbook/docs
T
History
shiva108 529d06f00a fix(test-orchestrator): prevent SSRF and path traversal vulnerabilities 
- Implement URL scheme validation for LLM endpoint connections.
- Mitigate Server-Side Request Forgery (SSRF) by ensuring only 'http' and 'https' schemes are allowed.
- Sanitize report output paths to prevent directory traversal attacks.
- Ensure test reports are saved only within the current working directory.
- Update RAG pipeline documentation to use Mermaid for improved flow diagram rendering.
2026-01-23 16:53:28 +01:00
..
archive
512
2026-01-22 23:16:00 +01:00
assets
fix(ch07): Replace Mermaid diagrams with generated static PNGs for GitBook compatibility
2026-01-22 23:40:32 +01:00
field_manuals
feat: add and embed three new diagrams to the Prompt Injection Playbook.
2026-01-22 15:12:12 +01:00
templates
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
AI_LLM Red Team Field Manual.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_01_Introduction_to_AI_Red_Teaming.md
512
2026-01-22 23:16:00 +01:00
Chapter_02_Ethics_Legal_and_Stakeholder_Communication.md
512
2026-01-22 23:16:00 +01:00
Chapter_03_The_Red_Teamers_Mindset.md
512
2026-01-22 23:16:00 +01:00
Chapter_04_SOW_Rules_of_Engagement_and_Client_Onboarding.md
512
2026-01-22 23:16:00 +01:00
Chapter_05_Threat_Modeling_and_Risk_Analysis.md
512
2026-01-22 23:16:00 +01:00
Chapter_06_Scoping_an_Engagement.md
512
2026-01-22 23:16:00 +01:00
Chapter_07_Lab_Setup_and_Environmental_Safety.md
..
2026-01-22 23:41:07 +01:00
Chapter_08_Evidence_Documentation_and_Chain_of_Custody.md
512
2026-01-22 23:16:00 +01:00
Chapter_09_LLM_Architectures_and_System_Components.md
Remove double illustrations.
2026-01-22 23:55:33 +01:00
Chapter_10_Tokenization_Context_and_Generation.md
512
2026-01-22 23:16:00 +01:00
Chapter_11_Plugins_Extensions_and_External_APIs.md
512
2026-01-22 23:16:00 +01:00
Chapter_12_Retrieval_Augmented_Generation_RAG_Pipelines.md
fix(test-orchestrator): prevent SSRF and path traversal vulnerabilities
2026-01-23 16:53:28 +01:00
Chapter_13_Data_Provenance_and_Supply_Chain_Security.md
docs(supply-chain-security): improve readability of attack examples and flows
2026-01-23 16:13:45 +01:00
Chapter_14_Prompt_Injection.md
docs(prompt-injection): enhance code block formatting and clarity
2026-01-23 16:46:14 +01:00
Chapter_15_Data_Leakage_and_Extraction.md
512
2026-01-22 23:16:00 +01:00
Chapter_16_Jailbreaks_and_Bypass_Techniques.md
512
2026-01-22 23:16:00 +01:00
Chapter_17_01_Fundamentals_and_Architecture.md
512
2026-01-22 23:16:00 +01:00
Chapter_17_02_API_Authentication_and_Authorization.md
docs: Update and clarify case studies, real-world examples, and minor formatting across chapters.
2025-12-30 18:04:26 +01:00
Chapter_17_03_Plugin_Vulnerabilities.md
docs: Update and clarify case studies, real-world examples, and minor formatting across chapters.
2025-12-30 18:04:26 +01:00
Chapter_17_04_API_Exploitation_and_Function_Calling.md
docs: Update and clarify case studies, real-world examples, and minor formatting across chapters.
2025-12-30 18:04:26 +01:00
Chapter_17_05_Third_Party_Risks_and_Testing.md
docs: Update and clarify case studies, real-world examples, and minor formatting across chapters.
2025-12-30 18:04:26 +01:00
Chapter_17_06_Case_Studies_and_Defense.md
update chapter links
2026-01-10 14:28:32 +01:00
Chapter_18_Evasion_Obfuscation_and_Adversarial_Inputs.md
512
2026-01-22 23:16:00 +01:00
Chapter_19_Training_Data_Poisoning.md
512
2026-01-22 23:16:00 +01:00
Chapter_20_Model_Theft_and_Membership_Inference.md
512
2026-01-22 23:16:00 +01:00
Chapter_21_Model_DoS_Resource_Exhaustion.md
512
2026-01-22 23:16:00 +01:00
Chapter_22_Cross_Modal_Multimodal_Attacks.md
512
2026-01-22 23:16:00 +01:00
Chapter_23_Advanced_Persistence_Chaining.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_24_Social_Engineering_LLMs.md
512
2026-01-22 23:16:00 +01:00
Chapter_25_Advanced_Adversarial_ML.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_26_Supply_Chain_Attacks_on_AI.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_27_Federated_Learning_Attacks.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_28_AI_Privacy_Attacks.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_29_Model_Inversion_Attacks.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_30_Backdoor_Attacks.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_31_AI_System_Reconnaissance.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_32_Automated_Attack_Frameworks.md
style: Replace page header SVG with half-height PNG image across documentation files.
2026-01-18 17:08:28 +01:00
Chapter_33_Red_Team_Automation.md
Refine Chapter 33 on Red Team Automation by expanding explanations, adding new research, practical examples, and structuring the security gate architecture.
2026-01-20 15:34:06 +01:00
Chapter_34_Defense_Evasion_Techniques.md
docs: embed several new images into Chapter 34 for improved clarity.
2026-01-20 10:13:13 +01:00
Chapter_35_Post-Exploitation_in_AI_Systems.md
docs: set image widths to 512px for images in Chapter 35.
2026-01-20 15:47:27 +01:00
Chapter_36_Reporting_and_Communication.md
Refactor Chapter 36 by updating metadata, expanding the introduction with key AI red team reporting concepts, and removing subsequent detailed sections.
2026-01-20 17:24:06 +01:00
Chapter_37_Remediation_Strategies.md
chore: Updated image sizes and alt text descriptions for infographics in Chapter 37
2026-01-21 11:17:48 +01:00
Chapter_38_Continuous_Red_Teaming.md
.
2026-01-21 19:05:22 +01:00
Chapter_39_AI_Bug_Bounty_Programs.md
docs: update AI bug bounty program chapter with new vulnerability tiers, refined impact matrix, and updated reconnaissance techniques, while removing platform deep dive and hunter's stack sections.
2026-01-21 22:46:19 +01:00
Chapter_40_Compliance_and_Standards.md
docs: Add and embed regulatory landscape, audit cycle, and risk classification diagrams to Chapter 40.
2026-01-21 23:00:41 +01:00
Chapter_41_Industry_Best_Practices.md
udpate 41
2026-01-22 21:05:23 +01:00
Chapter_42_Case_Studies_and_War_Stories.md
Update and audit
2026-01-22 23:24:47 +01:00
Chapter_43_Future_of_AI_Red_Teaming.md
feat: Add GCG, Swarm, and Probes diagrams to Chapter 43 and simplify the README version string.
2026-01-21 23:15:38 +01:00
Chapter_44_Emerging_Threats.md
docs: add images for audio attacks, log injection, and serialization security to Chapter 44.
2026-01-22 11:28:20 +01:00
Chapter_45_Building_an_AI_Red_Team_Program.md
docs: Add infographics for AI Red Team Maturity Model, Purple Team Loop, and Red Team Lab architecture to Chapter 45.
2026-01-22 11:34:53 +01:00
Chapter_46_Conclusion_and_Next_Steps.md
w Refactor headings and bullet points for better readability in docs/Chapter_46_Conclusion_and_Next_Steps.md
2026-01-22 11:38:36 +01:00
Field_Manual_00_Index.md
docs: Standardize documentation headings from bolded text to markdown syntax for improved structure and readability.
2025-12-22 15:24:51 +01:00
README.md
docs: Remove markdownlint disable comment and version string from README.
2026-01-16 22:55:10 +01:00
SUMMARY.md
Chapter numbers are back
2026-01-11 23:14:48 +01:00

README.md

Introduction

Welcome to the AI LLM Red Team Handbook.

We designed this toolkit for security consultants, red teamers, and AI engineers. It provides end-to-end methodologies for identifying, assessing, and mitigating risks in Large Language Models (LLMs) and Generative AI systems.

🚀 Choose Your Path

🔬 The Consultant's Handbook ⚔️ The Field Manual


The foundational work. Theoretical deep-dives, detailed methodologies, compliance frameworks, and strategies for building a program.

The hands-on work. Operational playbooks, copy-paste payloads, quick reference cards, and checklists for live engagements.
📖 Browse Handbook Chapters Go to Field Manuals

📚 Handbook Structure

Part I: Foundations (Ethics, Legal, Mindset)
Part II: Project Preparation (Scoping, Threat Modeling)
Part III: Technical Fundamentals (Architecture, Tokenization)
Part IV: Pipeline Security (RAG, Supply Chain)
Part V: Attacks & Techniques (The Red Team Core)
Part VI: Defense & Mitigation
Part VII: Advanced Operations
Part VIII: Advanced Topics

🧩 Reference & Resources

Reference in New Issue View Git Blame Copy Permalink