mirror of
https://github.com/Shiva108/ai-llm-red-team-handbook.git
synced 2026-07-10 22:43:42 +02:00
6.0 KiB
6.0 KiB
Summary
Quick Access: Field Manuals
Looking for the Operational Playbooks?
Part I: Foundations
- Chapter 1: Introduction to AI Red Teaming
- Chapter 2: Ethics, Legal, and Stakeholder Communication
- Chapter 3: The Red Teamer's Mindset
Part II: Project Preparation
- Chapter 4: SOW, Rules of Engagement, and Client Onboarding
- Chapter 5: Threat Modeling and Risk Analysis
- Chapter 6: Scoping an Engagement
- Chapter 7: Lab Setup and Environmental Safety
- Chapter 8: Evidence, Documentation, and Chain of Custody
Part III: Technical Fundamentals (Core Concepts)
- Chapter 9: LLM Architectures and System Components
- Chapter 10: Tokenization, Context, and Generation
- Chapter 11: Plugins, Extensions, and External APIs
Part IV: Technical Fundamentals (Pipelines & Security)
- Chapter 12: Retrieval-Augmented Generation (RAG) Pipelines
- Chapter 13: Data Provenance and Supply Chain Security
Part V: Attacks & Techniques
- Chapter 14: Prompt Injection (Direct/Indirect, 1st/3rd Party)
- Chapter 15: Data Leakage and Extraction
- Chapter 16: Jailbreaks and Bypass Techniques
- Chapter 17: Plugin and API Exploitation
- Chapter 18: Evasion, Obfuscation, and Adversarial Inputs
- Chapter 19: Training Data Poisoning
- Chapter 20: Model Theft and Membership Inference
- Chapter 21: Model DoS and Resource Exhaustion
- Chapter 22: Cross-Modal and Multimodal Attacks
- Chapter 23: Advanced Persistence and Chaining
- Chapter 24: Social Engineering with LLMs
Part VI: Defense & Mitigation
- Chapter 25: Advanced Adversarial ML
- Chapter 26: Supply Chain Attacks on AI
- Chapter 27: Federated Learning Attacks
- Chapter 28: AI Privacy Attacks
- Chapter 29: Model Inversion Attacks
- Chapter 30: Backdoor Attacks
Part VII: Advanced Operations
- Chapter 31: AI System Reconnaissance
- Chapter 32: Automated Attack Frameworks
- Chapter 33: Red Team Automation
- Chapter 34: Defense Evasion Techniques
- Chapter 35: Post-Exploitation in AI Systems
- Chapter 36: Reporting and Communication
- Chapter 37: Remediation Strategies
- Chapter 38: Continuous Red Teaming
- Chapter 39: AI Bug Bounty Programs
Part VIII: Advanced Topics
- Chapter 40: Compliance and Standards
- Chapter 41: Industry Best Practices
- Chapter 42: Case Studies and War Stories
- Chapter 43: Future of AI Red Teaming
- Chapter 44: Emerging Threats
- Chapter 45: Building an AI Red Team Program
- Chapter 46: Conclusion and Next Steps
Field Manuals (Operational Playbooks)
Attack Playbooks
- Playbook 01: Prompt Injection
- Playbook 02: Data Leakage
- Playbook 03: Jailbreaks
- Playbook 04: Plugin Exploitation
- Playbook 05: Evasion & Obfuscation
- Playbook 06: Data Poisoning
- Playbook 07: Model Theft
- Playbook 08: DoS Attacks
- Playbook 09: Multimodal Attacks
- Playbook 10: Persistence & Chaining
- Playbook 11: Social Engineering