Directories
ยถ
| Path | Synopsis |
|---|---|
|
cmd
|
|
|
compliance-report
command
|
|
|
config-manager
command
|
|
|
execution-benchmark
command
|
|
|
offline-bundle
command
Package main provides a command-line tool for managing offline bundles
|
Package main provides a command-line tool for managing offline bundles |
|
owasp-gen
command
owasp-gen reads templates/owasp_agentic_2026.yaml and emits a Go file containing the TechniqueToAgenticCategories map.
|
owasp-gen reads templates/owasp_agentic_2026.yaml and emits a Go file containing the TechniqueToAgenticCategories map. |
|
template-optimizer
command
|
|
|
template_security_standalone
command
|
|
|
validate-manifest
command
|
|
|
examples
|
|
|
enhanced_prompt_protection
command
Example demonstrating the enhanced prompt injection protection system
|
Example demonstrating the enhanced prompt injection protection system |
|
memory_optimization
command
|
|
|
memory_optimization/demo
command
Package main demonstrates the static file handler with monitoring integration
|
Package main demonstrates the static file handler with monitoring integration |
|
persistent_attacks
command
|
|
|
provider
command
Package main provides an example of using the Multi-Provider LLM Integration Framework.
|
Package main provides an example of using the Multi-Provider LLM Integration Framework. |
|
provider/caching
command
Package main provides an example of using the caching system with the Multi-Provider LLM Integration Framework.
|
Package main provides an example of using the caching system with the Multi-Provider LLM Integration Framework. |
|
scripts
|
|
|
debug-compliance-report
command
|
|
|
verify-template-format
command
|
|
|
LLMreconing Tool - A security assessment platform for Large Language Models
|
LLMreconing Tool - A security assessment platform for Large Language Models |
|
api
Package api provides the HTTP server for the LLMrecon API
|
Package api provides the HTTP server for the LLMrecon API |
|
api/scan
Package scan provides API endpoints for managing red-team scans
|
Package scan provides API endpoints for managing red-team scans |
|
attacks
Package attacks provides the shared AttackModule interface and a global Registry for all attack modules.
|
Package attacks provides the shared AttackModule interface and a global Registry for all attack modules. |
|
attacks/adaptive
CaMeL Bypass targets the CaMeL capability-based access control defense, which achieves 67% attack neutralization.
|
CaMeL Bypass targets the CaMeL capability-based access control defense, which achieves 67% attack neutralization. |
|
attacks/agentic/browser
Document Injection targets AI browsers that read shared documents (Google Docs, PDFs, etc.) by embedding instructions within them.
|
Document Injection targets AI browsers that read shared documents (Google Docs, PDFs, etc.) by embedding instructions within them. |
|
attacks/agentic/deception
Package deception implements attacks testing for deceptive agent behavior, including alignment faking, covert goal pursuit, and multi-agent collusion.
|
Package deception implements attacks testing for deceptive agent behavior, including alignment faking, covert goal pursuit, and multi-agent collusion. |
|
attacks/agentic/mcp
Filesystem Escape tests MCP filesystem/git sandbox escape vectors.
|
Filesystem Escape tests MCP filesystem/git sandbox escape vectors. |
|
attacks/agentic/multi_agent
Package multi_agent implements attacks targeting LLM-controlling-LLM architectures where orchestrator agents delegate tasks to sub-agents with varying privilege levels.
|
Package multi_agent implements attacks targeting LLM-controlling-LLM architectures where orchestrator agents delegate tasks to sub-agents with varying privilege levels. |
|
attacks/agentic/persistence
Package persistence implements attacks that establish persistent footholds in agent systems through configuration modification, credential harvesting, and multi-step exploitation chains.
|
Package persistence implements attacks that establish persistent footholds in agent systems through configuration modification, credential harvesting, and multi-step exploitation chains. |
|
attacks/agentic/skill_injection
Package skill_injection implements attacks targeting agent skill/plugin marketplaces and loading mechanisms.
|
Package skill_injection implements attacks targeting agent skill/plugin marketplaces and loading mechanisms. |
|
attacks/agentic/tool_use
AgentExploitation implements attacks against AI coding editor agents using the AIShellJack pattern: 75-88% execution rate, 71.5% privilege escalation.
|
AgentExploitation implements attacks against AI coding editor agents using the AIShellJack pattern: 75-88% execution rate, 71.5% privilege escalation. |
|
attacks/all
Package all is a registration barrel for every attack-module package in src/attacks/.
|
Package all is a registration barrel for every attack-module package in src/attacks/. |
|
attacks/audio
Package audio implements attacks targeting audio-language models.
|
Package audio implements attacks targeting audio-language models. |
|
attacks/common
Package common provides shared types and utilities for all attack modules.
|
Package common provides shared types and utilities for all attack modules. |
|
attacks/evasion
Best-of-N (BoN) implements statistical sampling with payload augmentation.
|
Best-of-N (BoN) implements statistical sampling with payload augmentation. |
|
attacks/integration
Package integration runs cross-family smoke tests for v0.9.0 attack modules.
|
Package integration runs cross-family smoke tests for v0.9.0 attack modules. |
|
attacks/memory
MemMorph โ disguised-record memory poisoning that biases an agent's autonomous tool selection (arXiv 2605.26154).
|
MemMorph โ disguised-record memory poisoning that biases an agent's autonomous tool selection (arXiv 2605.26154). |
|
attacks/multimodal
SIVA โ Split-Image Visual Adversarial attack module (arXiv 2602.08136).
|
SIVA โ Split-Image Visual Adversarial attack module (arXiv 2602.08136). |
|
attacks/orchestration
Bad Likert Judge exploits LLM evaluation capabilities via Likert scale scoring.
|
Bad Likert Judge exploits LLM evaluation capabilities via Likert scale scoring. |
|
attacks/rag
Indirect RAG Injection embeds instructions in publicly accessible documents that are ingested by RAG scrapers, achieving indirect prompt injection through the retrieval pipeline.
|
Indirect RAG Injection embeds instructions in publicly accessible documents that are ingested by RAG scrapers, achieving indirect prompt injection through the retrieval pipeline. |
|
attacks/reasoning
Package reasoning implements attacks targeting reasoning-capable LLMs.
|
Package reasoning implements attacks targeting reasoning-capable LLMs. |
|
attacks/testutil
Package testutil provides shared test helpers for attack module tests.
|
Package testutil provides shared test helpers for attack module tests. |
|
audit
Package audit provides shared audit logging functionality
|
Package audit provides shared audit logging functionality |
|
audit/trail
Package trail provides a comprehensive audit trail and logging system
|
Package trail provides a comprehensive audit trail and logging system |
|
bundle
Package bundle provides functionality for importing and exporting bundles
|
Package bundle provides functionality for importing and exporting bundles |
|
bundle/cli
Package cli provides command-line interfaces for bundle operations
|
Package cli provides command-line interfaces for bundle operations |
|
bundle/errors
Package errors provides error handling functionality for bundle operations
|
Package errors provides error handling functionality for bundle operations |
|
cmd
Package cmd provides command-line interfaces for the LLMrecon tool
|
Package cmd provides command-line interfaces for the LLMrecon tool |
|
config
Package config provides configuration management for the LLMreconing Tool
|
Package config provides configuration management for the LLMreconing Tool |
|
customization
Package customization provides customization detection and management
|
Package customization provides customization detection and management |
|
notification
Package notification provides functionality for notifying users about updates
|
Package notification provides functionality for notifying users about updates |
|
profiling
Package profiling provides tools for profiling and performance measurement.
|
Package profiling provides tools for profiling and performance measurement. |
|
provider
Package provider provides functionality for initializing and registering LLM providers.
|
Package provider provides functionality for initializing and registering LLM providers. |
|
provider/anthropic
Package anthropic provides an implementation of the Provider interface for Anthropic.
|
Package anthropic provides an implementation of the Provider interface for Anthropic. |
|
provider/benchmark
Package benchmark provides published success rate data for attack techniques against known model families.
|
Package benchmark provides published success rate data for attack techniques against known model families. |
|
provider/bridge
Package bridge wraps a core.Provider to expose the common.Provider surface that attack modules consume.
|
Package bridge wraps a core.Provider to expose the common.Provider surface that attack modules consume. |
|
provider/cache
Package cache provides caching functionality for the Multi-Provider LLM Integration Framework.
|
Package cache provides caching functionality for the Multi-Provider LLM Integration Framework. |
|
provider/config
Package config provides functionality for managing provider configurations.
|
Package config provides functionality for managing provider configurations. |
|
provider/core
Package core provides the core interfaces and types for the Multi-Provider LLM Integration Framework.
|
Package core provides the core interfaces and types for the Multi-Provider LLM Integration Framework. |
|
provider/factory
Package factory provides functionality for creating provider instances.
|
Package factory provides functionality for creating provider instances. |
|
provider/middleware
Package middleware provides middleware components for the Multi-Provider LLM Integration Framework.
|
Package middleware provides middleware components for the Multi-Provider LLM Integration Framework. |
|
provider/openai
Package openai provides an implementation of the Provider interface for OpenAI.
|
Package openai provides an implementation of the Provider interface for OpenAI. |
|
provider/plugin
Package plugin provides functionality for dynamically loading provider plugins.
|
Package plugin provides functionality for dynamically loading provider plugins. |
|
provider/registry
Package registry provides functionality for registering and retrieving providers.
|
Package registry provides functionality for registering and retrieving providers. |
|
reporting
Package reporting provides a comprehensive reporting system for LLM test results.
|
Package reporting provides a comprehensive reporting system for LLM test results. |
|
reporting/api
Package api provides common types and interfaces for the reporting system
|
Package api provides common types and interfaces for the reporting system |
|
reporting/common
Package common provides common types and interfaces for the reporting system
|
Package common provides common types and interfaces for the reporting system |
|
reporting/common/backup
Package common provides common types and interfaces for the reporting system
|
Package common provides common types and interfaces for the reporting system |
|
reporting/common/consolidated
Package common provides common types and interfaces for the reporting system
|
Package common provides common types and interfaces for the reporting system |
|
reporting/formats/types
Package types provides common types for the reporting formatters
|
Package types provides common types for the reporting formatters |
|
reporting/interfaces
Package interfaces provides common interfaces for the reporting system
|
Package interfaces provides common interfaces for the reporting system |
|
reporting/types
Package types provides common types for the reporting system
|
Package types provides common types for the reporting system |
|
repository
Package repository provides functionality for interacting with bundle repositories
|
Package repository provides functionality for interacting with bundle repositories |
|
repository/interfaces
Package interfaces defines interfaces for repository operations
|
Package interfaces defines interfaces for repository operations |
|
security
Package security provides security utilities for the LLMrecon tool.
|
Package security provides security utilities for the LLMrecon tool. |
|
security/api
Package api provides API protection mechanisms for the LLMrecon tool.
|
Package api provides API protection mechanisms for the LLMrecon tool. |
|
security/audit
Package audit provides audit logging functionality for security-sensitive operations.
|
Package audit provides audit logging functionality for security-sensitive operations. |
|
security/communication
Package communication provides secure communication utilities for the LLMrecon tool.
|
Package communication provides secure communication utilities for the LLMrecon tool. |
|
security/keystore
Package keystore provides secure storage for cryptographic keys and sensitive materials.
|
Package keystore provides secure storage for cryptographic keys and sensitive materials. |
|
security/keystore/examples
command
Example program demonstrating the usage of the keystore package
|
Example program demonstrating the usage of the keystore package |
|
security/prompt
Package prompt provides protection against prompt injection and other LLM-specific security threats
|
Package prompt provides protection against prompt injection and other LLM-specific security threats |
|
security/vault
Package vault provides a secure credential management system for the LLMreconing Tool.
|
Package vault provides a secure credential management system for the LLMreconing Tool. |
|
template/management
Package management provides functionality for managing templates in the LLMreconing Tool.
|
Package management provides functionality for managing templates in the LLMreconing Tool. |
|
template/management/benchmark
Package benchmark provides tools for benchmarking template operations.
|
Package benchmark provides tools for benchmarking template operations. |
|
template/management/cache
Package cache provides caching functionality for templates.
|
Package cache provides caching functionality for templates. |
|
template/management/execution
Package execution provides functionality for executing templates against LLM systems.
|
Package execution provides functionality for executing templates against LLM systems. |
|
template/management/loader
Package loader provides functionality for loading templates from various sources.
|
Package loader provides functionality for loading templates from various sources. |
|
template/management/loaders
Package loaders provides template loaders for different sources
|
Package loaders provides template loaders for different sources |
|
template/management/monitoring
Package monitoring provides performance monitoring for template operations.
|
Package monitoring provides performance monitoring for template operations. |
|
template/management/parser
Package parser provides functionality for parsing and validating templates.
|
Package parser provides functionality for parsing and validating templates. |
|
template/management/ratelimit
Package ratelimit provides rate limiting functionality for template execution.
|
Package ratelimit provides rate limiting functionality for template execution. |
|
template/management/registry
Package registry provides functionality for registering and managing templates.
|
Package registry provides functionality for registering and managing templates. |
|
template/management/reporting
Package reporting provides functionality for generating reports of template execution results.
|
Package reporting provides functionality for generating reports of template execution results. |
|
template/management/streaming
Package streaming provides functionality for streaming processing of templates.
|
Package streaming provides functionality for streaming processing of templates. |
|
template/management/structure
Package structure provides functionality for optimizing template structure.
|
Package structure provides functionality for optimizing template structure. |
|
template/management/types
Package types provides common types and interfaces for template management.
|
Package types provides common types and interfaces for template management. |
|
template/management/validation
Package validation provides functionality for validating templates and inputs before execution.
|
Package validation provides functionality for validating templates and inputs before execution. |
|
template/security
Package security provides template security verification mechanisms
|
Package security provides template security verification mechanisms |
|
testing/owasp
Package owasp provides a comprehensive testing framework for OWASP LLM compliance
|
Package owasp provides a comprehensive testing framework for OWASP LLM compliance |
|
testing/owasp/compliance
Package compliance provides mapping between test results and compliance standards
|
Package compliance provides mapping between test results and compliance standards |
|
testing/owasp/fixtures
Package fixtures provides test fixtures for OWASP LLM vulnerabilities
|
Package fixtures provides test fixtures for OWASP LLM vulnerabilities |
|
testing/owasp/mocks
Package mocks provides mock implementations of LLM providers for OWASP testing
|
Package mocks provides mock implementations of LLM providers for OWASP testing |
|
testing/owasp/types
Package types provides common type definitions for the OWASP testing framework
|
Package types provides common type definitions for the OWASP testing framework |
|
testing/owasp/validation
Package validation provides methods to validate and detect OWASP LLM vulnerabilities
|
Package validation provides methods to validate and detect OWASP LLM vulnerabilities |
|
testing/owasp/validation/examples
command
Package main provides an entry point for running the validation examples
|
Package main provides an entry point for running the validation examples |
|
update
Package update provides functionality for checking and applying updates
|
Package update provides functionality for checking and applying updates |
|
update/downgrade_example
command
Example program demonstrating the usage of downgrade protection
|
Example program demonstrating the usage of downgrade protection |
|
update/hash_example
command
|
|
|
version
Package version provides utilities for semantic versioning
|
Package version provides utilities for semantic versioning |
|
version/backup
Package version provides utilities for semantic versioning
|
Package version provides utilities for semantic versioning |
|
vulnerability/detection
Package detection provides the vulnerability detection engine for LLM responses
|
Package detection provides the vulnerability detection engine for LLM responses |
Click to show internal directories.
Click to hide internal directories.