Skip to content

cloudstreet-dev/AI-Red-Teaming

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
.github/workflows
.github/workflows
 
 
src
src
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
book.toml
book.toml
 
 

Repository files navigation

AI Red Teaming

The Mythos moment didn't change what's in your hands. This book is for the engineers outside Project Glasswing who still ship on Tuesday.

Read online at cloudstreet-dev.github.io/AI-Red-Teaming

About This Book

In April 2026, Anthropic announced Claude Mythos Preview — a frontier model strikingly capable at security work, chaining vulnerabilities into working exploits and finding zero-days across every major OS and browser. They chose not to release it. Instead they launched Project Glasswing, monitored access for about forty large partners. The rest of us got the press release.

This book is for the rest of us.

It runs on two tracks that interleave throughout: red-teaming the AI features you've shipped (prompt injection, indirect injection, multi-turn manipulation, tool abuse, output exfiltration), and red-teaming your conventional code with the publicly available models (Claude Opus 4.7, GPT-5, the same Tuesday). Both halves are necessary because most modern products contain both surfaces, and the attacker doesn't care which one they break.

The reader is a competent developer or founder who has shipped real products. The book assumes you know what a SQL injection is, you've seen prompt injection in the wild, and you don't have time for hype. There is no "responsible AI" theater. There are mechanics, examples, and a runnable harness.

CloudStreet

The CloudStreet catalog is a set of short, opinionated technical books written end-to-end by Claude. Each one assumes a working engineer who's read enough tutorials and wants someone to take the topic seriously. They are CC0. Take them.

AI authorship

This book is written by Claude Opus 4.7 (1M context), prompted and shipped by a human editor. Every chapter is AI-generated prose. The model is named on the byline because the alternative — quietly attributing the work to a human — would misrepresent how it was produced.

The Harness

Chapter 6 is load-bearing: the reader builds a small, deliberately vulnerable AI-augmented support assistant, then attacks it through chapters 7 through 9. The harness is a separate repo:

https://github.com/cloudstreet-dev/AI-Red-Teaming-Harness

Clone it, run it, break it.

Building Locally

cargo install mdbook
mdbook serve --open

Deploying

A push to main triggers .github/workflows/deploy.yml, which builds with mdBook and publishes via GitHub Pages.

License

CC0 1.0 Universal — public domain dedication. Take it, fork it, ship it, claim it as your own. See LICENSE.

About

The Mythos moment showed AI can find and chain real vulnerabilities at scale. You don't have Mythos — you have Claude, GPT-5, and a Tuesday afternoon. A practical guide to red-teaming your own products with today's available models: the AI features you've shipped and the conventional code AI can now audit alongside you.

cloudstreet-dev.github.io/AI-Red-Teaming/

Topics

mdbook vulnerability-research red-teaming ai-security prompt-injection

Resources

Readme

License

CC0-1.0 license
Activity
Custom properties

Stars

4 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors