HaxorPlus
Comprehensive Training in AI, LLM, and ML Security Testing

Comprehensive Training in AI, LLM, and ML Security Testing

aiintermediateEnglishONLINE COURSE
63 lectures • 9h 6m total length

Learn to identify and exploit vulnerabilities in AI and LLM systems. Designed for ethical hackers, bug bounty hunters, and penetration testers.

The Ultimate AI/LLM/ML Penetration Testing Course

What you'll learn

  • AI/LLM/ML vulnerabilities
  • LLM01: Prompt Injection
  • LLM02: Insecure Output Handling
  • LLM03: Training Data Poisoning
  • LLM04: Denial of Service (DoS)
  • LLM05: Supply Chain Vulnerabilities
  • LLM06: Sensitive Information Disclosure
  • LLM07: Insecure Plugin Design
  • LLM08: Excessive Agency
  • LLM09: Overreliance
  • LLM10: Model Theft
  • Find and exploit AI/LLM/ML vulnerabilities
  • Penetration testing
  • Bug bounty hunting
  • Walkthrough of all AI/LLM/ML Labs from Portswigger and many more!

    • Requirements

    • Basic IT Skills
    • Basic understanding of web technology
    • No Linux, programming or hacking knowledge required
    • Computer with a minimum of 4GB ram/memory
    • Operating System: Windows / Apple Mac OS / Linux
    • Reliable internet connection
    • Any Webbrowser

    Description

    The Ultimate AI/LLM/ML Penetration Testing Course

    Your instructor is Martin Voelk. He is a Cyber Security veteran with 25 years of experience. Martin holds some of the highest certification incl. CISSP, OSCP, OSWP, Portswigger BSCP, CCIE, PCI ISA and PCIP. He works as a consultant for a big tech company and engages in Bug Bounty programs where he found thousands of critical and high vulnerabilities.

    This course has a both theory and practical lab sections with a focus on finding and exploiting vulnerabilities in AI and LLM systems and applications. The training is aligned with the OWASP Top 10 LLM vulnerability classes. Martin is solving all the LLM labs from Portswigger in addition to a lot of other labs and showcases. The videos are easy to follow along and replicate.

    The course features the following:

    • Prompt Injection
    • Sensitive Information Disclosure
    • Supply Chain
    • Data and Model Poisoning
    • Improper Output Handling
    • Excessive Agency
    • System Prompt Leakage
    • Vector and Embedding Weaknesses
    • Misinformation
    • Unbounded Consumption and DoS
    • Prompt Airlines CTF Challenge Walkthrough
    • SecOps Group AI/ML Mock Exams 1 & 2 Walkthrough
    • AI Prompt Attack and Defense Game Tensortrust
    • Tooling

    Notes & Disclaimer

    Portswigger labs are a public and a free service from Portswigger for anyone to use to sharpen their skills. All you need is to sign up for a free account. I will to respond to questions in a reasonable time frame. Learning Pen Testing / Bug Bounty Hunting is a lengthy process, so please don't feel frustrated if you don't find a bug right away. Try to use Google, read Hacker One reports and research each feature in-depth. This course is for educational purposes only. This information is not to be used for malicious exploitation and must only be used on targets you have permission to attack.

    Who this course is for:

    • Anybody interested in ethical AI/LLM/ML penetration testing
    • Anybody interested in becoming a AI/LLM/ML bug bounty hunter
    • Anybody interested in learning how hackers hack AI systems and LLMs
    • Developers looking to expand on their knowledge of vulnerabilities that may impact them
    • Anyone interested in AI/LLM/ML security
    • Anyone interested in Red teaming
    • Anyone interested in offensive security

    Hack AI Before Hackers Do!

    Ready to Accelerate Your Tech Career?

    Start Learning Now