Toolkit to assess and determine model provenance
Veil Armor is an enterprise-grade security framework for Large Language Models (LLMs) that provides multi-layered protection against prompt injections, jailbreaks, PII leakage, and sophisticated attack vectors.
Security research on AI/ML model vulnerabilities based on DEF CON 33 presentations. Demonstrates pickle RCE, TorchScript exploitation, ONNX injection, model poisoning, and integrated LLM attacks with PromptMap2.
LLM Sentinel Red Teaming Platform is an enterprise-grade framework for automated security testing of Large Language Models, detecting vulnerabilities such as jailbreaks, prompt injection, and system prompt leakage across multiple providers, with structured attack orchestration, risk scoring, and security reporting to harden models before production
Educational research demonstrating weight manipulation attacks in SafeTensors models. Proves format validation alone is insufficient for AI model security.
Collection of Python security analysis tools for ML models and infrastructure. Includes FGSM harness, model inspection, poison monitoring, and deployment security validation.
GitHub Actions CI/CD pipeline for automated AI model security scanning with Palo Alto Networks Prisma AIRS
Static security scanner for LoRA adapters (.safetensors) — M1 static analyzer for weight-level anomalies.
AI/ML supply chain security scanner for detecting malicious payloads, unsafe deserialization, and hidden RCE inside model files like Pickle, PyTorch, and more.
AI supply chain security scanner: detects ML-specific risks (model weight poisoning, dataset contamination, gradient-based backdoors) that traditional scanners miss. The Snyk for AI. govML-governed.
AI Evaluator Pro 🛡️ is an AI security auditing tool that checks Hugging Face models for supply chain risks, unsafe formats, and author trust using OSINT + LLMs. It supports direct or discovery-based audits to detect security and integrity issues before deployment.
ML-infrastructure-aware anomaly detection system for protecting model weights against exfiltration, using a 3-layer cascaded architecture (Rules → ML → LLM).
🥒 Educational PyTorch pickle deserialization RCE demo showing how malicious .pt model files can execute arbitrary code during unsafe loading with torch.load().
Cryptographic provenance verification and binary inspection for ML model artifacts (Safetensors, GGUF, PyTorch) in CI/CD pipelines. Companion toolkit to the Help Net Security column Weaponized Weights.
Add a description, image, and links to the model-security topic page so that developers can more easily learn about it.
To associate your repository with the model-security topic, visit your repo's landing page and select "manage topics."