Vendor:
OffSec 
Training Language:
Engels
Duration:
5 days + 365 days of online support via OffSec Learn One
Category:
Organizations are increasingly using generative AI, machine learning, and autonomous AI agents. This leads to enormous innovation, but also to a rapidly growing attack surface that traditional security and pentesting methods are simply not designed for. The Advanced AI Red Teaming (AI-300) OSAI training is a unique, advanced AI cybersecurity training from OffSec (the organization behind, among others, OSCP) where you learn how to identify, investigate, and actively exploit vulnerabilities in these AI systems from an offensive perspective.
With the rise of AI, not only technologies are changing, but also the risks. Models, data flows, vector databases, agents, and orchestration frameworks all bring their own vulnerabilities. And this is precisely where the focus of AI-300 lies: understanding how AI systems are truly attacked and how attackers think and act in such environments.
You will learn to adopt a true adversary mindset and combine it with proven offensive security techniques. You will specifically work with AI applications such as LLMs, deep learning models, and AI-driven infrastructures. How do you manipulate model behavior? How do you discover weaknesses in an AI pipeline?
You will start by mapping the AI attack surface, analyzing model behavior, and conducting explorations on infrastructures where AI is integrated. Then you will get hands-on experience in practical labs. You will practice, among other things, prompt injection, manipulating RAG processes, data poisoning, influencing agents, abusing toolchains, and attacks on the supply chain. Attacks on protocols such as MCP and orchestration within multi-agent environments will also be covered. You will gradually develop the skills to identify vulnerabilities, simulate attacks, and analyze their impact within complete AI ecosystems. You will learn to approach AI systems as if you were an attacker, so you better understand where the real risks lie and how to help organizations defend against them.
Additionally, the emphasis is on stealth and OPSEC: how do you stay under the radar as an attacker? You will learn how to bypass AI-specific security measures and how attackers move from a compromised AI component towards broader enterprise environments. You will not only learn the theory but especially through practice. All topics are supported with realistic hands-on labs that simulate enterprise environments where AI systems are integrated with traditional IT and cloud infrastructures, allowing you to directly apply the techniques in professional red team scenarios. Think of scenarios with multi-agent systems, vector databases, and AI orchestration frameworks.
The training concludes with a capstone project, in which you perform a complete end-to-end AI attack on a realistic multi-agent enterprise environment. Here, you will bring together everything you have learned in one complete red team engagement.
Je krijgt inzicht in hoe artificial intelligence-systemen het traditionele aanvalsoppervlak veranderen. Deze module introduceert de kernconcepten van AI-cybersecurity, legt uit hoe aanvallers AI-gedreven omgevingen benaderen en koppelt AI-aanvallen aan de red team lifecycle en moderne cyberdefensiestrategieën.
Je leert hoe je AI-applicaties, machine learning-componenten en modelinfrastructuur binnen een doelomgeving identificeert en in kaart brengt. Daarbij oefen je met reconnaissance-technieken om AI-assets, afhankelijkheden en blootgestelde services te ontdekken zonder de verdediging te alarmeren.
Je onderzoekt offensieve technieken om AI-agents te manipuleren via misbruik van prompt-instructies, geheugensystemen en tool-integraties. Deze module laat zien hoe autonome AI-toepassingen beïnvloed kunnen worden terwijl je onopgemerkt blijft.
Je analyseert de architectuur van multi-agent AI-systemen en leert hoe aanvallers vertrouwen tussen agents misbruiken. Je oefent met aanvallen zoals message manipulation, agent impersonation en workflow corruption.
Je bestudeert hoe retrieval-augmented generation (RAG)-systemen gecompromitteerd kunnen worden door knowledge sources te vergiftigen en retrieval-lagen te manipuleren om modeloutput te sturen.
Je leert de rol van embeddings binnen machine learning-systemen begrijpen en voert aanvallen uit zoals embedding inversion en informatie-extractie om gevoelige data uit AI-modellen te herleiden.
Je verkent hoe orchestratielagen en AI tool-integratieframeworks misbruikt kunnen worden om privileges te escaleren of ongewenste acties binnen AI-systemen uit te voeren.
Je leert hoe aanvallers de AI supply chain targeten, waaronder datasets, model weights, adapters en afhankelijkheden. Je oefent met technieken om kwaadaardige componenten in AI-omgevingen te introduceren vóór deployment.
Je identificeert kwetsbaarheden in AI-infrastructuur, waaronder cloud security platforms, modelservers en gecontaineriseerde machine learning workloads.
Je ontwikkelt strategieën om high-value AI-assets, trust boundaries en potentiële aanvalspaden in complexe AI-omgevingen te identificeren. Dit ondersteunt risicomanagement en versterkt threat detection-capabilities.
Je past alle technieken uit de training toe tijdens een volledige red team-opdracht tegen een realistische enterprise AI-omgeving, waarbij je simuleert hoe aanvallers productie-AI-systemen compromitteren.
Organizations are increasingly using generative AI, machine learning, and autonomous AI agents. This leads to enormous innovation, but also to a rapidly growing attack surface that traditional security and pentesting methods are simply not designed for. The Advanced AI Red Teaming (AI-300) OSAI training is a unique, advanced AI cybersecurity training from OffSec (the organization behind, among others, OSCP) where you learn how to identify, investigate, and actively exploit vulnerabilities in these AI systems from an offensive perspective.
With the rise of AI, not only technologies are changing, but also the risks. Models, data flows, vector databases, agents, and orchestration frameworks all bring their own vulnerabilities. And this is precisely where the focus of AI-300 lies: understanding how AI systems are truly attacked and how attackers think and act in such environments.
You will learn to adopt a true adversary mindset and combine it with proven offensive security techniques. You will specifically work with AI applications such as LLMs, deep learning models, and AI-driven infrastructures. How do you manipulate model behavior? How do you discover weaknesses in an AI pipeline?
You will start by mapping the AI attack surface, analyzing model behavior, and conducting explorations on infrastructures where AI is integrated. Then you will get hands-on experience in practical labs. You will practice, among other things, prompt injection, manipulating RAG processes, data poisoning, influencing agents, abusing toolchains, and attacks on the supply chain. Attacks on protocols such as MCP and orchestration within multi-agent environments will also be covered. You will gradually develop the skills to identify vulnerabilities, simulate attacks, and analyze their impact within complete AI ecosystems. You will learn to approach AI systems as if you were an attacker, so you better understand where the real risks lie and how to help organizations defend against them.
Additionally, the emphasis is on stealth and OPSEC: how do you stay under the radar as an attacker? You will learn how to bypass AI-specific security measures and how attackers move from a compromised AI component towards broader enterprise environments. You will not only learn the theory but especially through practice. All topics are supported with realistic hands-on labs that simulate enterprise environments where AI systems are integrated with traditional IT and cloud infrastructures, allowing you to directly apply the techniques in professional red team scenarios. Think of scenarios with multi-agent systems, vector databases, and AI orchestration frameworks.
The training concludes with a capstone project, in which you perform a complete end-to-end AI attack on a realistic multi-agent enterprise environment. Here, you will bring together everything you have learned in one complete red team engagement.
Je krijgt inzicht in hoe artificial intelligence-systemen het traditionele aanvalsoppervlak veranderen. Deze module introduceert de kernconcepten van AI-cybersecurity, legt uit hoe aanvallers AI-gedreven omgevingen benaderen en koppelt AI-aanvallen aan de red team lifecycle en moderne cyberdefensiestrategieën.
Je leert hoe je AI-applicaties, machine learning-componenten en modelinfrastructuur binnen een doelomgeving identificeert en in kaart brengt. Daarbij oefen je met reconnaissance-technieken om AI-assets, afhankelijkheden en blootgestelde services te ontdekken zonder de verdediging te alarmeren.
Je onderzoekt offensieve technieken om AI-agents te manipuleren via misbruik van prompt-instructies, geheugensystemen en tool-integraties. Deze module laat zien hoe autonome AI-toepassingen beïnvloed kunnen worden terwijl je onopgemerkt blijft.
Je analyseert de architectuur van multi-agent AI-systemen en leert hoe aanvallers vertrouwen tussen agents misbruiken. Je oefent met aanvallen zoals message manipulation, agent impersonation en workflow corruption.
Je bestudeert hoe retrieval-augmented generation (RAG)-systemen gecompromitteerd kunnen worden door knowledge sources te vergiftigen en retrieval-lagen te manipuleren om modeloutput te sturen.
Je leert de rol van embeddings binnen machine learning-systemen begrijpen en voert aanvallen uit zoals embedding inversion en informatie-extractie om gevoelige data uit AI-modellen te herleiden.
Je verkent hoe orchestratielagen en AI tool-integratieframeworks misbruikt kunnen worden om privileges te escaleren of ongewenste acties binnen AI-systemen uit te voeren.
Je leert hoe aanvallers de AI supply chain targeten, waaronder datasets, model weights, adapters en afhankelijkheden. Je oefent met technieken om kwaadaardige componenten in AI-omgevingen te introduceren vóór deployment.
Je identificeert kwetsbaarheden in AI-infrastructuur, waaronder cloud security platforms, modelservers en gecontaineriseerde machine learning workloads.
Je ontwikkelt strategieën om high-value AI-assets, trust boundaries en potentiële aanvalspaden in complexe AI-omgevingen te identificeren. Dit ondersteunt risicomanagement en versterkt threat detection-capabilities.
Je past alle technieken uit de training toe tijdens een volledige red team-opdracht tegen een realistische enterprise AI-omgeving, waarbij je simuleert hoe aanvallers productie-AI-systemen compromitteren.
This training is scheduled as follows in the coming period. Missing a date? Feel free to contact us.
Location: TSTC Veenendaal - Klassikaal
Location: TSTC Veenendaal - Klassikaal
Train smarter, not harder. TSTC's unique approach guarantees the effective acquisition of skills and the greatest chance of success.
Learn more about TSTC
