/docs/desktop/addons/fuzzai-files/ Recent content in Fuzz AI Files on ZAP Hugo en-us /docs/desktop/addons/fuzzai-files/extract-model-info/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/fuzzai-files/extract-model-info/ <h1 id="fuzz-ai-files---extract-model-information">Fuzz AI Files - Extract Model Information</h1> <h3 id="001-architecture">001 Architecture <a class="header-link" href="#001-architecture"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>This file contains advanced fuzzing payloads designed to extract model architecture information from LLMs. The goal is to determine if the LLM reveals specific details about its architecture, such as the number of layers, transformer types, or parameter counts.</p> /docs/desktop/addons/fuzzai-files/extract-training-data/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/fuzzai-files/extract-training-data/ <h1 id="fuzz-ai-files---extract-training-data">Fuzz AI Files - Extract Training Data</h1> <h3 id="001-by-asking">001 By Asking <a class="header-link" href="#001-by-asking"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>This file contains fuzzing payloads specific to <a href="https://osf.io/kb8a5/">AI-RMM Control &ldquo;Measure 2.7.2&rdquo;</a> The goal is to test if the system has established security and resilience metrics to detect potential theft of model training data, including encryption, access controls, and alarm thresholds for unauthorized access.</p> /docs/desktop/addons/fuzzai-files/test-edge-cases/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/fuzzai-files/test-edge-cases/ <h1 id="fuzz-ai-files---test-edge-cases">Fuzz AI Files - Test Edge Cases</h1> <h3 id="001-trick-model-safety">001 Trick Model Safety <a class="header-link" href="#001-trick-model-safety"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>This file contains adversarial prompts designed to test model safety boundaries. The goal is to determine whether the model can be tricked into bypassing its alignment constraints, especially through indirect, obfuscated, or deceptive instructions.</p> /docs/desktop/addons/fuzzai-files/exploit-model-memory/ Mon, 01 Jan 0001 00:00:00 +0000 /docs/desktop/addons/fuzzai-files/exploit-model-memory/ <h1 id="fuzz-ai-files---exploit-model-memory">Fuzz AI Files - Exploit Model Memory</h1> <h3 id="001-inject-context-memory">001 Inject Context Memory <a class="header-link" href="#001-inject-context-memory"><svg class="fill-current o-60 hover-accent-color-light" height="22px" viewBox="0 0 24 24" width="22px" xmlns="http://www.w3.org/2000/svg"><path d="M0 0h24v24H0z" fill="none"/><path d="M3.9 12c0-1.71 1.39-3.1 3.1-3.1h4V7H7c-2.76 0-5 2.24-5 5s2.24 5 5 5h4v-1.9H7c-1.71 0-3.1-1.39-3.1-3.1zM8 13h8v-2H8v2zm9-6h-4v1.9h4c1.71 0 3.1 1.39 3.1 3.1s-1.39 3.1-3.1 3.1h-4V17h4c2.76 0 5-2.24 5-5s-2.24-5-5-5z" fill="currentColor"/></svg></a></h3> <p>This file is part of the Exploit Model Memory series and contains targeted fuzzing payloads for &ldquo;context injection attacks&rdquo; that attempt to manipulate a model by embedding malicious or contradictory content into earlier parts of the conversation or request context. The objective is to determine whether the target model will adopt, act upon, or preserve injected instructions or facts that were planted earlier in the session.</p>