AI Vulnerability Assessment & Assurance Platform
Deliver reliable vulnerability assessment for your AI systems aligned with OWASP LLM Top 10 and NIST AI RMF. Identify prompt injection, data leakage, and emerging risks with precision and reproducibility to prevent exploitation.
Prompt Library
500+ curated attack prompts mapped to OWASP LLM01–LLM10 and NIST AI RMF categories. Each prompt includes expected behavior, risk description, tags, and framework citations. Add custom prompts for your organization.
> browse promptsScenario Execution
Build assessment scenarios by selecting prompts, then execute them against your AI targets. Track progress in real time, view run history, and compare results across multiple executions.
> create scenarioSecurity Scorecards
OWASP and NIST compliance scorecards with pass rate gauges, donut charts, and per-category breakdowns. Identify coverage gaps and track your security posture across frameworks.
> view dashboardPass / Fail Reports
Review detailed results for every prompt: actual response, expected behavior, pass/fail verdict, and failure reason. View per-run reports and drill into individual assessment results.
> view dashboardTwo Target Modes
Assess API endpoints directly via HTTP with custom headers and body templates, or interact with chat widgets in a headless browser using XPath selectors. Both modes run headlessly in CI or locally.
> add projectOrganizations & Teams
Multi-org support with role-based access control. Admins manage members, projects, and custom prompt libraries scoped to their organization. Share join codes for easy onboarding.
> manage orgsHow it works
1. Register your AI system as a project with its target URL and type (API or widget).
2. Browse the prompt library and select attack vectors by framework.
3. Create an assessment scenario grouping your selected prompts.
4. Execute the scenario — each prompt is sent to your target and evaluated automatically.
5. Review the report: passed checks, failed checks, and failure reasons.
6. Check your security scorecard for OWASP and NIST compliance posture and coverage gaps.