AI Security Awareness
+5 XP
Category
Red Team
106 articles
LLM Hacking
+5 XP
AI API Authorization Vulnerabilities 2026 — Broken Access Control in LLM APIs
How attackers exploit broken access control in AI APIs in 2026. IDOR in LLM APIs, API key theft via prompt…
Prompt Injection
+5 XP
What Is Prompt Injection? The Attack That Breaks AI Assistants (2026)
What is prompt injection? The AI vulnerability that lets attackers hijack AI assistants through hidden instructions in documents, emails and…
AI LLM Hacking Course
+5 XP
LLM03 Supply Chain Vulnerabilities 2026 — Attacking AI Models Before They Deploy | AI LLM Hacking Course Day 7
Master LLM03 Supply Chain Vulnerabilities in 2026. Malicious Hugging Face models, pickle exploits, dataset poisoning and third-party plugin attacks. Complete…
AI in Hacking
+5 XP
AI CAPTCHA Bypass 2026 — How AI Solves Any CAPTCHA in Seconds
AI CAPTCHA Bypass - How AI bypasses modern CAPTCHA in 2026. Computer vision, audio bypass, reCAPTCHA v3 behavioural analysis evasion,…
OWASP LLM Top 10
+5 XP
AI Model Theft — Extraction Attacks 2026 — Stealing Trained Models Through the API
AI Model Theft - How attackers steal AI models through API queries in 2026. Functional cloning, membership inference, architectural extraction,…
Prompt Injection
+5 XP
Prompt Injection in RAG Systems 2026 — How Attackers Poison AI Knowledge Bases
How hackers attack using prompt injection in RAG systems in 2026 — knowledge base poisoning, retrieval manipulation, indirect injection via…
AI LLM Hacking Course
+5 XP
LLM02 Sensitive Information Disclosure — How LLMs Leak PII, Credentials & System Data | AI LLM Hacking Course Day 6
Master LLM02 Sensitive Information Disclosure in 2026. API keys in system prompts, PII from training data, credential extraction and system…
AI LLM Hacking Course
+5 XP
Indirect Prompt Injection 2026 — Web-Delivered Attacks That Hijack AI Without User Input | AI LLM Hacking Course Day 5
Master indirect prompt injection attacks in 2026. Document injection, web-page hijacking, RAG poisoning and email agent attacks — zero victim…
LLM Hacking
+5 XP
Insecure AI Plugin Architecture Attacks 2026 — When Tools Become Weapons
Exploiting insecure AI plugin architectures in 2026 — permission abuse, cross-plugin data leakage, and real attack chains in the plugin…