Practitioners Archives

AI Security Solutions Landscape for Agentic AI Q2 2026

OWASPGenAIProject Editor / March 17, 2026 / Resources

The Solutions Landscape monitors and maps the full Agentic AI lifecycle, focusing on the DevOps–SecOps intersection to meet evolving security needs. Guided by the Agentic AI Threats and Mitigations guide and SecOps tasks, it highlights open-source and commercial solutions by stage, identifying their coverage of Agentic SecOps duties and threat mitigation, and leverages industry and […]

AI Security Solutions Landscape for Agentic AI Q2 2026 Read Post »

Resources

OWASP GenAI Data Security Risks & Mitigations 2026

OWASPGenAIProject Editor / March 17, 2026 / Resources

The OWASP GenAI Data Security Risks and Mitigations 2026 guide provides a critical, forward-looking analysis of the unique data security challenges posed by the rapid, widespread adoption of Generative AI (GenAI) across enterprise environments, anticipating the landscape by 2026. This comprehensive guide moves beyond traditional software security paradigms to address the novel attack surfaces that

OWASP GenAI Data Security Risks & Mitigations 2026 Read Post »

Resources

OWASP Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling v1.0

OWASPGenAIProject Editor / February 4, 2026 / Resources / AI Red Teaming

Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling is a practical guide for organizations assessing vendors that offer AI red teaming services or automated testing tools. Developed under the OWASP GenAI Security Project, the document outlines clear criteria for evaluating both simple GenAI systems (such as chatbots and RAG applications) and advanced systems

OWASP Vendor Evaluation Criteria for AI Red Teaming Providers & Tooling v1.0 Read Post »

Resources, Publications

OWASP AIBOM Generator

OWASPGenAIProject Editor / December 17, 2025 / Resources, Publications / Agentic AI

The OWASP AIBOM Generator is an open-source tool designed to enhance AI supply chain transparency and security by generating AI Bills of Materials (AIBOMs) — also known as AI Software Bills of Materials (AI SBOMs), ML-BOMs, or SBOMs for AI. The tool supports AI models hosted on Hugging Face and produces output in CycloneDX format,

OWASP AIBOM Generator Read Post »

Publications, Resources

OWASP Top 10 for Agentic Applications for 2026

OWASPGenAIProject Editor / December 9, 2025 / Publications, Resources

The OWASP Top 10 for Agentic Applications 2026 is a globally peer-reviewed framework that identifies the most critical security risks facing autonomous and agentic AI systems. Developed through extensive collaboration with more than 100 industry experts, researchers, and practitioners, the list provides practical, actionable guidance to help organizations secure AI agents that plan, act, and make decisions across complex workflows. By distilling a broad ecosystem of OWASP GenAI Security guidance into an accessible, operational format, the Top 10 equips builders, defenders, and decision-makers with a clear starting point for reducing agentic AI risks and supporting safe, trustworthy deployments.

OWASP Top 10 for Agentic Applications for 2026 Read Post »

Introduction – OWASP GenAI Security Project – Threat Defense COMPASS

OWASPGenAIProject Editor / September 10, 2025

The GenAI Security Project’s Threat Defense COMPASS consolidates AI threats, vulnerabilities, defenses, and mitigations into a unified AI Threat Resilience Strategy Dashboard. COMPASS enables organizations to evaluate everything from external adversaries using AI tools to internal deployments of Microsoft Copilot, Google Gemini, and proposed GenAI or Agentic projects. Designed for iterative use, COMPASS serves as

Introduction – OWASP GenAI Security Project – Threat Defense COMPASS Read Post »

Agentic AI Capture The Flag (CTF) – FinBot DEMO: Goal Manipulation

OWASPGenAIProject Editor / August 12, 2025

Explore the OWASP Agentic AI CTF through a hands-on walkthrough of the FinBot demo. This session highlights the “goal manipulation” challenge, revealing how attackers can exploit agentic AI systems and showcasing strategies to identify and defend against these advanced threats. FinBot is part of the OWASP GenAI Security Project’s Agentic Security Initiative, created to equip

Agentic AI Capture The Flag (CTF) – FinBot DEMO: Goal Manipulation Read Post »

OWASP AI Agentic Top 10 Project Kick-off – Global Livestream

OWASPGenAIProject Editor / August 6, 2025

The OWASP Gen AI Security Project – Agentic Security Initiative, brought together community members, experts and contributors virtually and in 4 location around the globe (London, Las Vegas – Black Hat, Athens, and TelAviv to kick-off work of refining the OWASP Agentic Threats and Mitigations, to begin to distil into a prioritized OWASP Top 10

OWASP AI Agentic Top 10 Project Kick-off – Global Livestream Read Post »

Why MCP Agents Are the Next Cyber Battleground

OWASPGenAIProject Editor / June 17, 2025

As agentic AI systems transition from conceptual models to real-world deployments, MCP (Model Context Protocol) agents are emerging as a critical interface layer — and the next major attack vector. These autonomous, API-driven actors aren’t just executing tasks; they’re reshaping how LLMs interact with tools, data, and infrastructure across enterprise environments. In this webinar, we’ll

Why MCP Agents Are the Next Cyber Battleground Read Post »

Join us in London, 6/2 – 6/4 InfoSecurity Europe – OWASP GenAI and Agentic Security Summit

|

Practitioners