Topics

Browse posts by category and tag — every topic we cover, with the latest pieces under each.

Categories

tools 5 posts

Automated LLM Red-Teaming in CI: garak vs PyRIT vs Promptfoo

Three open-source tools can gate your pipeline on LLM security findings — garak, PyRIT, and Promptfoo. A practitioner comparison of how each fits CI/CD, what it scans, and which to run where.
Prompt-Injection Detectors Compared: Rebuff, Vigil, and LLM Guard

A practitioner comparison of open-source prompt-injection detectors — Rebuff, Vigil, and LLM Guard's PromptInjection scanner — including detection architecture, maintenance status, and which to actually deploy in 2026.
PyRIT: Microsoft's AI Red-Teaming Framework, Explained

A technical breakdown of PyRIT, Microsoft's Python Risk Identification Tool for generative AI — its target/dataset/orchestrator/converter/scorer architecture, multi-turn attack strategies, and where it fits next to garak.
Best LLM Security Scanners: Open-Source and Enterprise Compared

A practitioner's comparison of the best LLM security scanners — Garak, PyRIT, LLM Guard, Promptfoo, Vigil, and enterprise options. Coverage, CI/CD fit, and runtime use cases.
Garak LLM Vulnerability Scanner: How It Works and When to Use It

A technical breakdown of the garak LLM vulnerability scanner — its probe architecture, supported attack categories, CLI workflow, and how it fits into a real AI red-teaming pipeline.

guardrails 4 posts

evaluation 1 posts

False Positive Cost in Refusal Systems: Measure and Tune

Practical methods for quantifying the cost of refusal false positives in LLM products — eval design, baseline rates, threshold tuning, and the regression suite you need to keep them stable.

site 1 posts

What this site is for

Best LLM Scanners is a practitioner's comparison of LLM security scanners — Garak, PyRIT, promptmap, vendor scanners — coverage gaps, false-positive profiles, integration cost, and when 'best' depends on what you're defending.