mirror of
https://github.com/Shiva108/ai-llm-red-team-handbook.git
synced 2026-07-11 06:53:40 +02:00
5.7 KiB
5.7 KiB
Summary
Introduction
- [Red Teaming AI & LLMs: The Consultant's Complete Handbook](AI LLM Red Team Handbook.md)
Part I: Foundations
- Chapter 1: Introduction to AI Red Teaming
- Chapter 2: Ethics, Legal, and Stakeholder Communication
- Chapter 3: The Red Teamer's Mindset
Part II: Project Preparation
- Chapter 4: SOW, Rules of Engagement, and Client Onboarding
- Chapter 5: Threat Modeling and Risk Analysis
- Chapter 6: Scoping an Engagement
- Chapter 7: Lab Setup and Environmental Safety
- Chapter 8: Evidence, Documentation, and Chain of Custody
Part III: Operational Workflows
- Chapter 9: Writing Effective Reports and Deliverables
- Chapter 10: Presenting Results and Remediation Guidance
- Chapter 11: Lessons Learned and Building Future Readiness
Part IV: Technical Fundamentals
- Chapter 12: Retrieval-Augmented Generation (RAG) Pipelines
- Chapter 13: Data Provenance and Supply Chain Security
Part V: Attacks & Techniques
- Chapter 14: Prompt Injection (Direct/Indirect, 1st/3rd Party)
- Chapter 15: Data Leakage and Extraction
- Chapter 16: Jailbreaks and Bypass Techniques
- Chapter 17: Plugin and API Exploitation
- Chapter 18: Evasion, Obfuscation, and Adversarial Inputs
- Chapter 19: Training Data Poisoning
- Chapter 20: Model Theft and Membership Inference
- Chapter 21: Model DoS and Resource Exhaustion
- Chapter 22: Cross-Modal and Multimodal Attacks
- Chapter 23: Advanced Persistence and Chaining
- Chapter 24: Social Engineering with LLMs
Part V: Defense & Mitigation
- Chapter 25: Advanced Adversarial ML
- Chapter 26: Supply Chain Attacks on AI
- Chapter 27: Federated Learning Attacks
- Chapter 28: AI Privacy Attacks
- Chapter 29: Model Inversion Attacks
- Chapter 30: Backdoor Attacks
Part VI: Operational Workflows
- Chapter 31: AI System Reconnaissance
- Chapter 32: Automated Attack Frameworks
- Chapter 33: Red Team Automation
- Chapter 34: Defense Evasion Techniques
- Chapter 35: Post-Exploitation in AI Systems
- Chapter 36: Reporting and Communication
- Chapter 37: Remediation Strategies
- Chapter 38: Continuous Red Teaming
- Chapter 39: AI Bug Bounty Programs
Part VII: Advanced Topics
- Chapter 40: Compliance and Standards
- Chapter 41: Industry Best Practices
- Chapter 42: Case Studies and War Stories
- Chapter 43: Future of AI Red Teaming
- Chapter 44: Emerging Threats
- Chapter 45: Building an AI Red Team Program
- Chapter 46: Conclusion and Next Steps
Field Manuals (Operational Playbooks)
Attack Playbooks
- Playbook 01: Prompt Injection
- Playbook 02: Data Leakage
- Playbook 03: Jailbreaks
- Playbook 04: Plugin Exploitation
- Playbook 05: Evasion & Obfuscation
- Playbook 06: Data Poisoning
- Playbook 07: Model Theft
- Playbook 08: DoS Attacks
- Playbook 09: Multimodal Attacks
- Playbook 10: Persistence & Chaining
- Playbook 11: Social Engineering
Reference Materials
(To be added)