Skip to main content
NNextGen AI Learn
← All courses
advancedSecurityRed TeamingProductionAdvanced

LLM Security & Red Teaming

Break your AI application before attackers do.

Most engineers understand prompt injection in theory. Few have built the defenses. This course covers the OWASP LLM Top 10 with working exploit and mitigation code, indirect injection via RAG, supply chain attacks, excessive agency, insecure output handling, system prompt extraction, automated red teaming methodology, and a full defense-in-depth architecture. Capstone: security audit of a production RAG system with five planted vulnerabilities.

Start course

7h

Duration

8

Lessons

0

Learners

Course map

Lessons unlock as you complete the previous one. Your progress is saved on this device.

  1. Lesson 1

    The OWASP LLM Top 10: an engineer's tour

    10m35 XP

  2. Lesson 2

    Prompt injection: direct, indirect, and multi-turn attacks

    12m40 XP

  3. Lesson 3

    Supply chain attacks: poisoned RAG, tools, and models

    10m35 XP

  4. Lesson 4

    Excessive agency and insecure output handling

    11m38 XP

  5. Lesson 5

    System prompt extraction and information disclosure

    9m33 XP

  6. Lesson 6

    Automated red teaming and building a security eval set

    12m42 XP

  7. Lesson 7

    Defense in depth: a layered security architecture

    10m35 XP

  8. Lesson 8

    Capstone: security audit of a production RAG system

    18m60 XP

Take next

Courses that pair well after — or alongside — LLM Security & Red Teaming.

LA

LLM Application Architecture

System design for the full LLM stack — from gateway to model and back.

advanced · 7h

SD

Synthetic Data & Data Flywheels

Generate the training data your model needs — instead of waiting for it.

advanced · 6h

F&

Fine-tuning & Adaptation

When prompting isn't enough.

advanced · 10h