Watch the GenAI Security Project’s – Agentic AI Security Summit, Europe from London

|

WATCH THE RECORDING !
Article, Featured

OWASP Agentic AI Taxonomy in Action: From Theory to Tools

/ / Article, Featured / ,

As OWASP’s Agentic Security Initiative (ASI) gains momentum, its impact is already being felt across the AI security landscape. The Agentic AI – Threats and Mitigations taxonomy is now powering real-world developer tools that embed security into the workflows of AI builders and red teams. In this post, we highlight three standout tools—PENSAR, SPLX.AI Agentic Radar, and AI&ME—that are adopting the OWASP ASI taxonomy to help teams test, defend, and build secure agentic systems. This growing ecosystem is also informing the development of the forthcoming OWASP Top 10 for Agentic AI. Join us at DEF CON and Black Hat to help shape what’s next.

OWASP Agentic AI Taxonomy in Action: From Theory to Tools Read Post »

Article

OWASP Gen AI Incident & Exploit Round-up, Q2’25

/ / Article /

OWASP Gen AI Incident & Exploit Round-up, Q2 (Mar-Jun) 2025 About the Round-up This is not an exhaustive list, but a semi-regular blog where we aim to track and share insights on recent exploits involving or targeting Generative AI. Our goal is to provide a clear summary of each reported incident, including its impact, a

OWASP Gen AI Incident & Exploit Round-up, Q2’25 Read Post »

Article

Securing AI’s New Frontier: The Power of Open Collaboration on MCP Security

/ / Article / ,

As AI systems begin interacting with live tools and data via the Model Context Protocol (MCP), new security risks emerge that traditional approaches can’t fully address. This post summarizes key insights from the OWASP GenAI Security Project’s latest research on securing MCP, offering practical, defense-in-depth strategies to help developers and defenders build safer agentic AI applications in real time.

Securing AI’s New Frontier: The Power of Open Collaboration on MCP Security Read Post »

Announcement

OWASP Top 10 for LLM is now the GenAI Security Project and promoted to OWASP Flagship status

/ / Announcement / ,

WILMINGTON, Del. — March 27, 2025 — The Open Worldwide Application Security Project (OWASP) announced today that its OWASP Top 10 for LLM and Generative AI List has become The OWASP Gen AI Security Project. The name change reflects the popularity of the initial Top 10 List and the recognition of the project’s expanded focus.

OWASP Top 10 for LLM is now the GenAI Security Project and promoted to OWASP Flagship status Read Post »

Article

OWASP Gen AI Incident & Exploit Round-up, Jan-Feb 2025

/ / Article /

About the Round-up This is not an exhaustive list, but a semi-regular blog where we aim to track and share insights on recent exploits involving or targeting Generative AI. Our goal is to provide a clear summary of each reported incident, including its impact, a breakdown of the attack, relevant vulnerabilities from the OWASP Top

OWASP Gen AI Incident & Exploit Round-up, Jan-Feb 2025 Read Post »

Announcement

OWASP AI Security Guidelines offer a supporting foundation for new UK government AI Security Guidelines

/ / Announcement /

The UK Government Department for Science Innovation and Technology (DSIT) published its new voluntary Code of Practice (CoP) for the Cyber Security of AI today, January 31. Based upon 13 principles, the CoP clarifies the responsibilities of different AI stakeholders and is, for the first time, structured alongside the typical AI system lifecycle from planning

OWASP AI Security Guidelines offer a supporting foundation for new UK government AI Security Guidelines Read Post »

Announcement, Initiatives

Announcing the OWASP LLM and Gen AI Security Project Initiative for Securing Agentic Applications

/ / Announcement, Initiatives / ,

The OWASP Foundation is thrilled to announce the launch of the Agentic Security Initiative from the LLM and Generative AI Security Project to tackle the unique security challenges posed by Autonomous AI agents. The initiative, part of the OWASP LLM/Gen AI Security Project, known for the Top 10 List for Large Language Models (LLMs), sets

Announcing the OWASP LLM and Gen AI Security Project Initiative for Securing Agentic Applications Read Post »

Announcement, Initiatives

Research Initiative – Securing and Scrutinizing LLMS in Exploit Generation

/ / Announcement, Initiatives / ,

Challenge Currently limited actionable data exists in understanding how different LLMS are being leveraged in exploit generation, and what mechanisms can be used to detect and assess exploits to develop mitigations and guardrails. Initiative Overview This initiative aims to explore the capabilities and risks associated with generating day-one vulnerabilities’ exploits using various Large Language Models

Research Initiative – Securing and Scrutinizing LLMS in Exploit Generation Read Post »

Announcement, Initiatives

Call for Data! Contribute Now to the Top 10 for LLM 2.0 Risk Data Collection

/ / Announcement, Initiatives /

Dear Colleagues, I am excited to announce the launch of our data collection initiative for the 2024 edition of the OWASP Top 10 for Large Language Model (LLM) AI Applications. As we continue to explore and address the top security risks associated with LLM AI applications, your expertise and contributions are invaluable. From 𝐌𝐚𝐲 𝟐𝟎𝐭𝐡

Call for Data! Contribute Now to the Top 10 for LLM 2.0 Risk Data Collection Read Post »

Announcement

Announcing the LLM Top 10 version 1.1 Update

/ / Announcement /

I’m excited to announce the first significant update to the OWASP Top 10 for Large Language Model Applications! The field of LLMs is moving fast and this version (v1.1) includes numerous enhancements and updates from the last two months. The improvements certainly include grammar and readability, but there’s much more. In this version, we’ve updated

Announcing the LLM Top 10 version 1.1 Update Read Post »

OWASP and the OWASP logo are trademarks of the OWASP Foundation, Inc. Unless otherwise specified, all content on the site is Creative Commons Attribution-ShareAlike v4.0 and provided without

warranty of service or accuracy. For more information, please refer to our General Disclaimer.  – Copyright © 2025 OWASP Foundation, Inc.

Scroll to Top