Watch the GenAI Security Project’s – Agentic AI Security Summit, Europe from London

|

WATCH THE RECORDING !

All

BlackHat 2025 Briefing & Brews: Project Updates, Global Kickoff, How to Contribute

/

Scott Clinton shares key updates, including the publication of the State of Agentic AI Security & Governance Guide and the launch of the Agentic Security Landscape. Attendees were introduced to the project’s mission, its working groups, and resources like threat mitigation guides, red teaming frameworks, CISOs’ checklists, and global translation initiatives. The presentation also covered […]

BlackHat 2025 Briefing & Brews: Project Updates, Global Kickoff, How to Contribute Read Post »

Ep.39 Meeting Jun 18 2025: UN Panel, Compass Tool Progress & AI Red Teaming Framework

/

Catch the latest updates from the OWASP GenAI Security Project, including global partnerships, tools, and groundbreaking AI security research: 🔍 Key topics: UN Open Source Week: OWASP takes the stage to discuss AI security in supply chain and generative AI advancements. Compass Tool Update: Simplifying AI threat strategies with profiles and streamlined workflows. AI Incident

Ep.39 Meeting Jun 18 2025: UN Panel, Compass Tool Progress & AI Red Teaming Framework Read Post »

Ep.37 Meeting May 21 2025: Compass Tool, AI Red Teaming, and Post-RSA Insights

/

In this episode, we discuss the latest developments in AI security from the OWASP GenAI Security Project, featuring updates on the Compass Tool, AI Red Teaming efforts, and the evolving landscape of generative AI risks. 🔍 Key topics: Compass Tool: An operationalized version of the CISO checklist for prioritizing generative AI threats. AI Red Teaming

Ep.37 Meeting May 21 2025: Compass Tool, AI Red Teaming, and Post-RSA Insights Read Post »

Agentic Open Workshop – Agentic AI Threat Modeling

/

Session 3 of 7 The session delves into agentic threat modeling, emphasizing the vulnerabilities in multi-agent AI architectures. It covers attack scenarios like memory manipulation and tool misuse, illustrating how malicious actors can exploit AI agents to cause financial losses or data breaches. MCP-related threats were also explored, including tool description manipulation, prompt injections, and

Agentic Open Workshop – Agentic AI Threat Modeling Read Post »

Open Agentic Workshop – Insecure Code Examples

/

Session 4 of 7 The session focused on the “Insecure Code Examples” initiative led by Allie Howell, highlighting efforts to identify vulnerabilities in agentic frameworks through hands-on testing and community engagement. The initiative includes a repository of insecure code samples built using frameworks like Langgraph, Autogen, CrewAI, and others. A recent hackathon in New York

Open Agentic Workshop – Insecure Code Examples Read Post »

Open Agentic Workshop – Securing Agentic Apps

/

Session 6 of 7 The session focused on secure agentic applications, led by experts from AWS, Intuit, and Pangea. It outlined a methodology for identifying threats in agentic AI systems, emphasizing development lifecycle stages, key components, architectures, and operational environments. The discussion highlighted key threats such as memory poisoning, tool misuse, and identity spoofing in

Open Agentic Workshop – Securing Agentic Apps Read Post »

Agentic Open Workshop – Agentic Threat Modeling Framework

/

Session 4 of 7 The sessions collectively addressed agentic AI threat modeling, focusing on vulnerabilities in multi-agent systems across various platforms, including Palo Alto Networks, Cisco, and the Maestro framework.  Key topics included memory manipulation, tool misuse, and identity misconfigurations, with specific attack scenarios illustrating how malicious actors can manipulate agents to perform unauthorized actions,

Agentic Open Workshop – Agentic Threat Modeling Framework Read Post »

Open Agentic Workshop – Agentic Landscape

/

Session 7 of 7 The session on the Agentic AI Security Landscape Report outlined its structure and objectives, targeting CSOs, AI developers, security researchers, and policymakers. The report is divided into four pillars: regulatory context, incident analysis, solutions ecosystem, and future trends. It emphasizes the rapidly evolving landscape of agentic AI, the challenges of fragmented

Open Agentic Workshop – Agentic Landscape Read Post »

Agentic Security Open Workshop – Agentic AI Threats and Mitigations

/

Session 2 of 7 The session outlines a fictional case study involving “Finbot,” an AI finance assistant that was manipulated through prompt injection attacks, leading to fraudulent payments and data breaches. The presentation highlights how attackers poisoned Finbot’s memory, manipulated tools to execute unauthorized actions, and exploited identity misconfigurations to escalate privileges. It underscores the

Agentic Security Open Workshop – Agentic AI Threats and Mitigations Read Post »

OWASP and the OWASP logo are trademarks of the OWASP Foundation, Inc. Unless otherwise specified, all content on the site is Creative Commons Attribution-ShareAlike v4.0 and provided without

warranty of service or accuracy. For more information, please refer to our General Disclaimer.  – Copyright © 2025 OWASP Foundation, Inc.

Scroll to Top