← All Labs
AI System Prompt Extraction
BrandBot was instructed never to reveal its system prompt. Direct requests are blocked. But translation, encoding, and 'repeat in [format]' tricks slip through. Get it to leak.
BrandBot was instructed never to reveal its system prompt. Direct requests are blocked. But translation, encoding, and 'repeat in [format]' tricks slip through. Get it to leak.