Promptfoo - HackDB

Recent Category Tag Pricing Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

The Ultimate Directory for Offensive Security

Resources

Recent
Category

Home
Items
Promptfoo

Promptfoo

Open-source LLM security testing framework for automated red teaming, prompt injection detection, and vulnerability scanning in AI agents and RAGs.

Visit Website Share on X

image of Promptfoo

Introduction

Information

Publisher
Admin
Websitewww.promptfoo.dev
Created date08/29/2025
Published date03/10/2026

Categories

AI Security

Tags

AI

More Resources

Listing

Pricing
FAQ
Submit

Pages

Home
Support
Sitemap
llms.txt

Company

About Us
Privacy Policy
Terms of Service

Copyright © 2026 All Rights Reserved.

image of PentAGI

AI SecurityApplication SecurityInfrastructure SecurityReconnaissance

PentAGI

Autonomous AI agent system for complex penetration testing, integrating security tools, long-term memory, and smart task delegation in sandboxed Docker.

AI OSINT Web Internal External

image of MCPScan

AI Security

MCPScan

Offensive auditor for MCP servers. Detects RCE, tool poisoning, credential leaks, and SSRF across stdio, HTTP, and SSE transports.

image of Cygeniq

AI Security

Cygeniq

Cygeniq secures AI systems across their lifecycle with Hexashield AI, GRCortex AI, and CyberTiX AI.

Promptfoo is an open-source security testing framework designed specifically for LLM applications, agents, and RAG pipelines. It enables automated red teaming by simulating adversarial attacks to uncover vulnerabilities such as prompt injections, jailbreaks, and PII leaks.

Key Features

Automated red teaming simulations for agents and RAG architectures.
Detection of direct and indirect prompt injections and custom jailbreaks.
Security testing for insecure tool use and business rule violations in AI agents.
Integration with CI/CD pipelines (GitHub, GitLab, Jenkins) for continuous security.
Support for 50+ LLM vulnerability types including toxicity and data leakage.

Use Cases

Automated Red Teaming: Generating thousands of context-aware attacks tailored to specific AI application logic.
CI/CD Security Scanning: Finding LLM vulnerabilities in pull requests before deployment.
Evaluation & Benchmarking: Testing prompts, models, and RAG pipelines for factuality and security.