Summary
This goes after the LLM attack surface with practical payloads and detection patterns. You get direct injection techniques, jailbreak methods, RAG pipeline poisoning, and model extraction testing vectors. It covers the full AI supply chain from malicious pickle files in HuggingFace models to LangChain template injection. The tool calling exploitation section is especially useful if you're assessing agentic systems where one compromised agent can poison others downstream. Includes YARA rules for prompt injection detection and concrete examples of adversarial input crafting. This is offensive work, so you're actively trying to break guardrails and extract training data. Good for red team engagements against AI products or validating your own LLM application defenses before someone else finds the holes.
Install to Claude Code
npx -y skills add hypnguyen1209/offensive-claude --skill ai-security --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
