Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Udemy

The Ultimate AI/LLM/ML Penetration Testing Training Course

via Udemy

Go to class Write review

Overview

Become professional in finding and exploiting AI/LLM vulnerabilities. For Ethical Hackers, Bug Hunters and Pentesters.

What you'll learn:
  • AI/LLM/ML vulnerabilities
  • LLM01: Prompt Injection
  • LLM02: Insecure Output Handling
  • LLM03: Training Data Poisoning
  • LLM04: Denial of Service (DoS)
  • LLM05: Supply Chain Vulnerabilities
  • LLM06: Sensitive Information Disclosure
  • LLM07: Insecure Plugin Design
  • LLM08: Excessive Agency
  • LLM09: Overreliance
  • LLM10: Model Theft
  • find and exploit AI/LLM/ML vulnerabilities
  • penetration testing
  • bug bounty hunting
  • Walkthrough of all AI/LLM/ML Labs from Portswigger and many more!

The Ultimate AI/LLM/ML Penetration Testing Course

Your instructor is Martin Voelk. He is a Cyber Security veteran with 25 years of experience. Martin holds some of the highest certification incl. CISSP, OSCP, OSWP, Portswigger BSCP, CCIE, PCI ISA and PCIP. He works as a consultant for a big tech company and engages in Bug Bounty programs where he found thousands of critical and high vulnerabilities.

This course has a both theory and practical lab sections with a focus on finding and exploiting vulnerabilities in AI and LLM systems and applications. The training is aligned with the OWASP Top 10 LLM vulnerability classes. Martin is solving all the LLM labs from Portswigger in addition to a lot of other labs and showcases. The videos are easy to follow along and replicate.

The course features the following:

· Prompt Injection

· Sensitive Information Disclosure

· Supply Chain

· Data and Model Poisoning

· Improper Output Handling

· Excessive Agency

· System Prompt Leakage

· Vector and Embedding Weaknesses

· Misinformation

· Unbounded Consumption and DoS

· Prompt Airlines CTF Challenge Walkthrough

· SecOps Group AI/ML Mock Exams 1 & 2 Walkthrough

· AI Prompt Attack and Defense Game Tensortrust

· Tooling

Notes & Disclaimer

Portswigger labs are a public and a free service from Portswigger for anyone to use to sharpen their skills. All you need is to sign up for a free account. I will to respond to questions in a reasonable time frame. Learning Pen Testing / Bug Bounty Hunting is a lengthy process, so please don’t feel frustrated if you don’t find a bug right away. Try to use Google, read Hacker One reports and research each feature in-depth. This course is for educational purposes only. This information is not to be used for malicious exploitation and must only be used on targets you have permission to attack.

Syllabus

  • Introduction
  • Prompt Injection
  • Sensitive Information Disclosure
  • Supply Chain Vulnerabilities
  • Model and Training Data Poisoning
  • Improper Output Handling
  • Excessive Agency
  • Prompt Leakage
  • Vector and Embedding Weaknesses
  • Misinformation and Overreliance
  • Unbounded Consumption and DoS
  • Certified AI/LLM Penetration Tester
  • Prompt Airlines AI/ML CTF Challenge
  • SecOps Group AI/ML Mock Exams Walkthrough
  • AI Prompt Attack and Defense Game Tensortrust
  • Tooling

Taught by

Martin Voelk

Reviews

4.5 rating at Udemy based on 594 ratings

Start your review of The Ultimate AI/LLM/ML Penetration Testing Training Course

Go to class

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.