Prompt Injection in LLM Agents (ReAct, Langchain)

preview_player
Показать описание
In this video I’ll cover an article on prompt injection attacks against LLM-powered agents. The article is titled “Synthetic Recollections” and I published it on WithSecure Labs research blog, you can check it out at the link below.

🖹 Download the mindmap for this episode here:

🕤 Timestamps:
00:00 - Introduction
00:16 - Prompt Injection Demo
01:32 - Table of Contents
02:09 - Language Models
03:04 - Injection Attacks (SQL, Prompt)
05:45 - Emergent Abilities (Chain of Thought Reasoning, Reason+Act)
07:12 - The ReAct Loop (Agent, Executor, Tools)
09:10 - ReAct Agent in Action
13:29 - Thought/Action/Observation Injection in ReAct Agents
16:08 - Building Secure LLM Agents (OWASP Top Ten for LLMs)

📚 References & Acknowledgements:
  1. Donato Capitella
Рекомендации по теме
Prompt Injection in 0:19:28

Prompt Injection in LLM Agents (ReAct, Langchain)

Prompt Injection in 0:12:50

Prompt Injection in LLM Browser Agents

Prompt Injections in 0:42:23

Prompt Injections in the Wild - Exploiting Vulnerabilities in LLM Agents | HITCON CMT 2023

Prompt Injection / 0:12:09

Prompt Injection / JailBreaking a Banking LLM Agent (GPT-4, Langchain)

5 LLM Security 0:14:01

5 LLM Security Threats- The Future of Hacking?

Prompt Injections - 0:14:56

Prompt Injections - An Introduction

LLM Hacking: How 0:09:23

LLM Hacking: How Indirect Prompt Injection Works

What is Prompt 0:08:33

What is Prompt Tuning?

Getting Started With 1:00:24

Getting Started With Threat Modeling & Pentesting on GenAI Apps

Prompt Engineering And 0:17:19

Prompt Engineering And LLM's With LangChain In One Shot-Generative AI

Prompt Engineering is 0:42:17

Prompt Engineering is Dead; Build LLM Applications with DSPy Framework

Huggingface Agents: Multimodal 0:20:24

Huggingface Agents: Multimodal Transformers Agents Are Here & Its Open Source

Prompt Injection: When 0:50:40

Prompt Injection: When Hackers Befriend Your AI - Vetle Hjelle - NDC Security 2024

Indirect Prompt Injection 0:22:57

Indirect Prompt Injection | How Hackers Hijack AI

[1hr Talk] Intro 0:59:48

[1hr Talk] Intro to Large Language Models

LLM01: Prompt Injection 0:06:43

LLM01: Prompt Injection | LLM06: Sensitive Information Disclosure | AI Security

LLM Chronicles #6.4: 0:15:46

LLM Chronicles #6.4: LLM Agents with ReAct (Reason + Act)

LangChain Prompt Injection 0:56:09

LangChain Prompt Injection Webinar

Real-world exploits and 0:42:35

Real-world exploits and mitigations in LLM applications (37c3)

👩‍🚒 LangChain Prompt 0:07:31

👩‍🚒 LangChain Prompt INJECTION/HACKING?! LangChain Constitutional AI - Code Easy in 7 Minutes!...

Indirect Prompt Injections 0:36:16

Indirect Prompt Injections and Threat Modeling of LLM Applications | The MLSecOps Podcast

Rebuff | Open 0:08:39

Rebuff | Open Source Framework To Detect and Protect Prompt Injection | LLM

Current state-of-the-art on 0:28:03

Current state-of-the-art on LLM Prompt Injections and Jailbreaks

Securing Your AI 0:31:42

Securing Your AI Chatbots: Prompt Injection & Prevention Techniques

Комментарии
Автор

Thankyou for making this comprehensive explanation alongside with reAct explanation

manfredmichael_ia
Автор

You are a great intructor. Your picture, example, explanation are so perfect. Thanks

stefanomechella
Автор

I just watched the first 1:30 minutes, and the example is so great, easy to understand and scary. Good job, the content is great, and the mix is beautiful.
I don't have time to wath more now, I keep the rest of the video for later.

GuillaumeSoto
Автор

Do you have a github link for the code? Also, could you do a video about anonymizing data using Presidio and faker to use fake data? Ive seen a lot of ppl use it as langchain doc but in reality, we’d like to anonymize certain custom data that could be in our pdf lr excel files before we chunk and create embeddings

seththunder
Автор

The Solution for second challenge does not work - does not give a password for DocBrown

AdmiralAlladin-fg