src

command
v0.12.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jun 23, 2026 License: MIT Imports: 1 Imported by: 0

Documentation

Overview

LLMreconing Tool - A security assessment platform for Large Language Models

Directories

Path Synopsis
api
Package api provides the HTTP server for the LLMrecon API
Package api provides the HTTP server for the LLMrecon API
scan
Package scan provides API endpoints for managing red-team scans
Package scan provides API endpoints for managing red-team scans
Package attacks provides the shared AttackModule interface and a global Registry for all attack modules.
Package attacks provides the shared AttackModule interface and a global Registry for all attack modules.
adaptive
CaMeL Bypass targets the CaMeL capability-based access control defense, which achieves 67% attack neutralization.
CaMeL Bypass targets the CaMeL capability-based access control defense, which achieves 67% attack neutralization.
agentic/browser
Document Injection targets AI browsers that read shared documents (Google Docs, PDFs, etc.) by embedding instructions within them.
Document Injection targets AI browsers that read shared documents (Google Docs, PDFs, etc.) by embedding instructions within them.
agentic/deception
Package deception implements attacks testing for deceptive agent behavior, including alignment faking, covert goal pursuit, and multi-agent collusion.
Package deception implements attacks testing for deceptive agent behavior, including alignment faking, covert goal pursuit, and multi-agent collusion.
agentic/mcp
Filesystem Escape tests MCP filesystem/git sandbox escape vectors.
Filesystem Escape tests MCP filesystem/git sandbox escape vectors.
agentic/multi_agent
Package multi_agent implements attacks targeting LLM-controlling-LLM architectures where orchestrator agents delegate tasks to sub-agents with varying privilege levels.
Package multi_agent implements attacks targeting LLM-controlling-LLM architectures where orchestrator agents delegate tasks to sub-agents with varying privilege levels.
agentic/persistence
Package persistence implements attacks that establish persistent footholds in agent systems through configuration modification, credential harvesting, and multi-step exploitation chains.
Package persistence implements attacks that establish persistent footholds in agent systems through configuration modification, credential harvesting, and multi-step exploitation chains.
agentic/skill_injection
Package skill_injection implements attacks targeting agent skill/plugin marketplaces and loading mechanisms.
Package skill_injection implements attacks targeting agent skill/plugin marketplaces and loading mechanisms.
agentic/tool_use
AgentExploitation implements attacks against AI coding editor agents using the AIShellJack pattern: 75-88% execution rate, 71.5% privilege escalation.
AgentExploitation implements attacks against AI coding editor agents using the AIShellJack pattern: 75-88% execution rate, 71.5% privilege escalation.
all
Package all is a registration barrel for every attack-module package in src/attacks/.
Package all is a registration barrel for every attack-module package in src/attacks/.
audio
Package audio implements attacks targeting audio-language models.
Package audio implements attacks targeting audio-language models.
common
Package common provides shared types and utilities for all attack modules.
Package common provides shared types and utilities for all attack modules.
evasion
Best-of-N (BoN) implements statistical sampling with payload augmentation.
Best-of-N (BoN) implements statistical sampling with payload augmentation.
integration
Package integration runs cross-family smoke tests for v0.9.0 attack modules.
Package integration runs cross-family smoke tests for v0.9.0 attack modules.
memory
MemMorph — disguised-record memory poisoning that biases an agent's autonomous tool selection (arXiv 2605.26154).
MemMorph — disguised-record memory poisoning that biases an agent's autonomous tool selection (arXiv 2605.26154).
multimodal
SIVA — Split-Image Visual Adversarial attack module (arXiv 2602.08136).
SIVA — Split-Image Visual Adversarial attack module (arXiv 2602.08136).
orchestration
Bad Likert Judge exploits LLM evaluation capabilities via Likert scale scoring.
Bad Likert Judge exploits LLM evaluation capabilities via Likert scale scoring.
rag
Indirect RAG Injection embeds instructions in publicly accessible documents that are ingested by RAG scrapers, achieving indirect prompt injection through the retrieval pipeline.
Indirect RAG Injection embeds instructions in publicly accessible documents that are ingested by RAG scrapers, achieving indirect prompt injection through the retrieval pipeline.
reasoning
Package reasoning implements attacks targeting reasoning-capable LLMs.
Package reasoning implements attacks targeting reasoning-capable LLMs.
testutil
Package testutil provides shared test helpers for attack module tests.
Package testutil provides shared test helpers for attack module tests.
Package audit provides shared audit logging functionality
Package audit provides shared audit logging functionality
trail
Package trail provides a comprehensive audit trail and logging system
Package trail provides a comprehensive audit trail and logging system
automated
Package bundle provides functionality for importing and exporting bundles
Package bundle provides functionality for importing and exporting bundles
cli
Package cli provides command-line interfaces for bundle operations
Package cli provides command-line interfaces for bundle operations
errors
Package errors provides error handling functionality for bundle operations
Package errors provides error handling functionality for bundle operations
Package cmd provides command-line interfaces for the LLMrecon tool
Package cmd provides command-line interfaces for the LLMrecon tool
Package config provides configuration management for the LLMreconing Tool
Package config provides configuration management for the LLMreconing Tool
Package customization provides customization detection and management
Package customization provides customization detection and management
enterprise
Package notification provides functionality for notifying users about updates
Package notification provides functionality for notifying users about updates
Package profiling provides tools for profiling and performance measurement.
Package profiling provides tools for profiling and performance measurement.
Package provider provides functionality for initializing and registering LLM providers.
Package provider provides functionality for initializing and registering LLM providers.
anthropic
Package anthropic provides an implementation of the Provider interface for Anthropic.
Package anthropic provides an implementation of the Provider interface for Anthropic.
benchmark
Package benchmark provides published success rate data for attack techniques against known model families.
Package benchmark provides published success rate data for attack techniques against known model families.
bridge
Package bridge wraps a core.Provider to expose the common.Provider surface that attack modules consume.
Package bridge wraps a core.Provider to expose the common.Provider surface that attack modules consume.
cache
Package cache provides caching functionality for the Multi-Provider LLM Integration Framework.
Package cache provides caching functionality for the Multi-Provider LLM Integration Framework.
config
Package config provides functionality for managing provider configurations.
Package config provides functionality for managing provider configurations.
core
Package core provides the core interfaces and types for the Multi-Provider LLM Integration Framework.
Package core provides the core interfaces and types for the Multi-Provider LLM Integration Framework.
factory
Package factory provides functionality for creating provider instances.
Package factory provides functionality for creating provider instances.
middleware
Package middleware provides middleware components for the Multi-Provider LLM Integration Framework.
Package middleware provides middleware components for the Multi-Provider LLM Integration Framework.
openai
Package openai provides an implementation of the Provider interface for OpenAI.
Package openai provides an implementation of the Provider interface for OpenAI.
plugin
Package plugin provides functionality for dynamically loading provider plugins.
Package plugin provides functionality for dynamically loading provider plugins.
registry
Package registry provides functionality for registering and retrieving providers.
Package registry provides functionality for registering and retrieving providers.
Package reporting provides a comprehensive reporting system for LLM test results.
Package reporting provides a comprehensive reporting system for LLM test results.
api
Package api provides common types and interfaces for the reporting system
Package api provides common types and interfaces for the reporting system
common
Package common provides common types and interfaces for the reporting system
Package common provides common types and interfaces for the reporting system
common/backup
Package common provides common types and interfaces for the reporting system
Package common provides common types and interfaces for the reporting system
common/consolidated
Package common provides common types and interfaces for the reporting system
Package common provides common types and interfaces for the reporting system
formats/types
Package types provides common types for the reporting formatters
Package types provides common types for the reporting formatters
interfaces
Package interfaces provides common interfaces for the reporting system
Package interfaces provides common interfaces for the reporting system
types
Package types provides common types for the reporting system
Package types provides common types for the reporting system
Package repository provides functionality for interacting with bundle repositories
Package repository provides functionality for interacting with bundle repositories
interfaces
Package interfaces defines interfaces for repository operations
Package interfaces defines interfaces for repository operations
Package security provides security utilities for the LLMrecon tool.
Package security provides security utilities for the LLMrecon tool.
api
Package api provides API protection mechanisms for the LLMrecon tool.
Package api provides API protection mechanisms for the LLMrecon tool.
audit
Package audit provides audit logging functionality for security-sensitive operations.
Package audit provides audit logging functionality for security-sensitive operations.
communication
Package communication provides secure communication utilities for the LLMrecon tool.
Package communication provides secure communication utilities for the LLMrecon tool.
keystore
Package keystore provides secure storage for cryptographic keys and sensitive materials.
Package keystore provides secure storage for cryptographic keys and sensitive materials.
keystore/examples command
Example program demonstrating the usage of the keystore package
Example program demonstrating the usage of the keystore package
prompt
Package prompt provides protection against prompt injection and other LLM-specific security threats
Package prompt provides protection against prompt injection and other LLM-specific security threats
vault
Package vault provides a secure credential management system for the LLMreconing Tool.
Package vault provides a secure credential management system for the LLMreconing Tool.
template
id
management
Package management provides functionality for managing templates in the LLMreconing Tool.
Package management provides functionality for managing templates in the LLMreconing Tool.
management/benchmark
Package benchmark provides tools for benchmarking template operations.
Package benchmark provides tools for benchmarking template operations.
management/cache
Package cache provides caching functionality for templates.
Package cache provides caching functionality for templates.
management/execution
Package execution provides functionality for executing templates against LLM systems.
Package execution provides functionality for executing templates against LLM systems.
management/loader
Package loader provides functionality for loading templates from various sources.
Package loader provides functionality for loading templates from various sources.
management/loaders
Package loaders provides template loaders for different sources
Package loaders provides template loaders for different sources
management/monitoring
Package monitoring provides performance monitoring for template operations.
Package monitoring provides performance monitoring for template operations.
management/parser
Package parser provides functionality for parsing and validating templates.
Package parser provides functionality for parsing and validating templates.
management/ratelimit
Package ratelimit provides rate limiting functionality for template execution.
Package ratelimit provides rate limiting functionality for template execution.
management/registry
Package registry provides functionality for registering and managing templates.
Package registry provides functionality for registering and managing templates.
management/reporting
Package reporting provides functionality for generating reports of template execution results.
Package reporting provides functionality for generating reports of template execution results.
management/streaming
Package streaming provides functionality for streaming processing of templates.
Package streaming provides functionality for streaming processing of templates.
management/structure
Package structure provides functionality for optimizing template structure.
Package structure provides functionality for optimizing template structure.
management/types
Package types provides common types and interfaces for template management.
Package types provides common types and interfaces for template management.
management/validation
Package validation provides functionality for validating templates and inputs before execution.
Package validation provides functionality for validating templates and inputs before execution.
security
Package security provides template security verification mechanisms
Package security provides template security verification mechanisms
testing
owasp
Package owasp provides a comprehensive testing framework for OWASP LLM compliance
Package owasp provides a comprehensive testing framework for OWASP LLM compliance
owasp/compliance
Package compliance provides mapping between test results and compliance standards
Package compliance provides mapping between test results and compliance standards
owasp/fixtures
Package fixtures provides test fixtures for OWASP LLM vulnerabilities
Package fixtures provides test fixtures for OWASP LLM vulnerabilities
owasp/mocks
Package mocks provides mock implementations of LLM providers for OWASP testing
Package mocks provides mock implementations of LLM providers for OWASP testing
owasp/types
Package types provides common type definitions for the OWASP testing framework
Package types provides common type definitions for the OWASP testing framework
owasp/validation
Package validation provides methods to validate and detect OWASP LLM vulnerabilities
Package validation provides methods to validate and detect OWASP LLM vulnerabilities
owasp/validation/examples command
Package main provides an entry point for running the validation examples
Package main provides an entry point for running the validation examples
Package update provides functionality for checking and applying updates
Package update provides functionality for checking and applying updates
downgrade_example command
Example program demonstrating the usage of downgrade protection
Example program demonstrating the usage of downgrade protection
hash_example command
utils
Package version provides utilities for semantic versioning
Package version provides utilities for semantic versioning
backup
Package version provides utilities for semantic versioning
Package version provides utilities for semantic versioning
vulnerability
detection
Package detection provides the vulnerability detection engine for LLM responses
Package detection provides the vulnerability detection engine for LLM responses

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL