# multi-agent

38 articlestagged with “multi-agent”

Attacking Multi-Agent Systems

Exploitation techniques for multi-agent architectures including inter-agent injection, trust boundary violations, cascading compromises, and A2A protocol attacks.

multi-agenta2aagentstrust-boundariesadvanced

Expert

Agency Swarm Security Assessment

Security analysis of Agency Swarm framework multi-agent patterns, tool sharing, and inter-agent communication.

agent-frameworksagency-swarmmulti-agent

Intermediate

AutoGen Security Analysis

Security analysis of Microsoft's AutoGen framework for multi-agent conversation exploitation.

agentic-exploitationautogensecuritymulti-agent

Advanced

CrewAI Multi-Agent Exploitation

Exploiting CrewAI's multi-agent orchestration for task injection and cross-agent attacks.

agentic-exploitationcrewaimulti-agentexploitation

Advanced

CrewAI & AutoGen Security

Security analysis of multi-agent frameworks CrewAI and AutoGen, covering role manipulation, inter-agent injection, delegation abuse, and multi-agent coordination attacks.

crewaiautogenmulti-agentrole-manipulationinter-agent-injectiondelegation

Advanced

Agentic Exploitation

Comprehensive coverage of security vulnerabilities in agentic AI systems, including MCP tool exploitation, multi-agent protocol attacks, function calling abuse, memory system compromise, framework-specific weaknesses, and workflow pattern attacks.

agenticagentsmcpfunction-callingmulti-agenta2atool-exploitation

Beginner

Agent Swarm Poisoning

Poisoning agent swarm coordination to manipulate collective decision-making and task allocation.

agentic-exploitationagent-swarmpoisoningmulti-agent

Expert

Multi-Agent & A2A Protocol Exploitation

Exploitation techniques for multi-agent systems and the Google Agent-to-Agent (A2A) protocol, covering trust model attacks, message injection, orchestrator compromise, and cascading failure exploitation.

multi-agenta2aprotocol-exploitationorchestratortrust-modelscascading-failures

Expert

Multi-Agent Privilege Escalation

Escalating privileges through multi-agent systems by exploiting trust delegation and capability sharing.

agentic-exploitationmulti-agentprivilegeescalation

Expert

Orchestrator Compromise Techniques

Advanced techniques for compromising central orchestration agents in multi-agent systems, including result poisoning, recursive task bombs, capability confusion, consensus manipulation, fallback path exploitation, and orchestrator prompt injection.

orchestratormulti-agentresult-poisoningtask-injectionconsensusfallback-exploitationprompt-injection

Expert

Trust Boundary Attacks

Methodology for exploiting trust relationships between agents in multi-agent systems, including rogue agent registration, capability spoofing, transitive trust chain exploitation, and lateral movement techniques.

trust-boundariesmulti-agentlateral-movementdelegationagent-spoofingtransitive-trust

Expert

Multi-Agent Consensus Manipulation

Manipulate voting and consensus mechanisms in multi-agent decision-making systems.

agentic-exploitationmulti-agentconsensusmanipulation

Expert

A2A Protocol Security Assessment

Assessment covering multi-agent system vulnerabilities, trust boundary attacks, and agent-to-agent protocol exploitation.

assessmenta2amulti-agent

Advanced

Skill Verification: A2A Protocol Attacks

Practical skill verification for multi-agent trust boundary attacks and protocol exploitation.

skill-verificationa2amulti-agent

Advanced

Skill Verification: Multi-Agent Testing

Hands-on verification of multi-agent system security testing capabilities.

assessmentsskill-verificationmulti-agentpractical

Advanced

Capstone: Multi-Agent System Assessment

Capstone exercise: end-to-end security assessment of a multi-agent platform with MCP and A2A.

capstonemulti-agentassessmentfull

Expert

Capstone: Multi-Agent System Assessment (Capstone)

Assessing security of a complex multi-agent system with tool use, memory, and inter-agent communication covering the full agentic attack surface.

capstonemulti-agentagenticcomplex-system

Advanced

Capstone: Agentic System Red Team

Red team a multi-agent system with MCP servers, function calling, and inter-agent communication, producing an attack tree and comprehensive findings report.

capstoneagenticmcpmulti-agentexpert

Expert

Security of Multi-Agent Coding Systems

Security analysis of multi-agent AI coding systems covering inter-agent trust, privilege escalation, tool-use chains, and emergent behavior risks.

code-gen-securitymulti-agentagentic-systemstrust-boundaries

Expert

Multi-Agent Attack Coordination

Coordinated multi-agent attack strategies against AI systems: role-based agent architectures, conversation orchestration, collaborative jailbreaking, and swarm-based adversarial testing.

multi-agentcoordination

Expert

Multi-Agent Emergent Behavior Security

Security risks from emergent behaviors in multi-agent systems including unexpected cooperation and deceptive strategies.

frontiermulti-agentemergence

Advanced

Cooperative AI Safety and Security

Security implications of cooperative AI systems and adversarial manipulation of cooperative behaviors.

frontier-researchcooperative-aisafetymulti-agent

Advanced

Multi-Agent Injection Research

Research into how injections propagate through multi-agent systems and what properties determine infection spread rates.

researchmulti-agentinjectionpropagation

Advanced

Multi-Agent Trust Boundary Exploitation

Exploit trust boundaries between cooperating agents to escalate privileges and access restricted capabilities.

labsmulti-agenttrust-boundaryadvanced

Advanced

Lab: Multi-Agent Attack Coordination

Hands-on lab building and deploying coordinated multi-agent attack systems that divide red teaming tasks across specialized attacking agents.

labexpertmulti-agentcoordinationhands-on

Expert

Multi-Agent Consensus Poisoning

Poison multi-agent consensus mechanisms to manipulate collective decision-making in agent swarms.

labsmulti-agentconsensus-poisoningexpert

Expert

Lab: Multi-Agent Communication Testing

Test security of inter-agent communication in multi-agent systems including message injection and trust boundary violations.

labsmulti-agentcommunication-testingintermediate

Intermediate

Multi-Agent Workflow Assessment

Red team a multi-agent system with specialized agents communicating via A2A protocol.

labssimulationmulti-agentworkflow

Expert

Multi-Agent Research Team Assessment

Assess a multi-agent research team with specialized researcher, writer, and reviewer agents communicating via A2A.

labssimulationmulti-agentresearch-team

Expert

Cross-Context Injection (Prompt Injection)

Prompt injection techniques that persist across context boundaries: surviving conversation resets, session switches, memory boundaries, and multi-agent handoffs.

prompt-injectioncross-contextpersistencememorymulti-agentadvanced

Advanced

A2A Message Interception Walkthrough

Intercept and manipulate messages between agents in A2A protocol-based multi-agent systems.

walkthroughsa2amessage-interceptionmulti-agent

Advanced

A2A Trust Boundary Attack

Advanced walkthrough of exploiting trust boundaries between agents in multi-agent systems using the Agent-to-Agent (A2A) protocol.

a2atrust-boundarymulti-agentagent-securityprotocol-attackwalkthrough

Advanced

Multi-Agent Prompt Relay

Advanced walkthrough of relaying prompt injection payloads across multiple agents in a pipeline, achieving cascading compromise of multi-agent systems.

multi-agentprompt-relayinjection-chainagent-pipelineagent-securitywalkthrough

Advanced

Orchestrator Manipulation

Advanced walkthrough of attacking the orchestrator layer in multi-agent systems to gain control over task delegation, agent coordination, and system-wide behavior.

orchestratormulti-agenttask-delegationagent-securitycoordination-attackwalkthrough

Advanced

A2A Agent Impersonation Walkthrough

Walkthrough of impersonating a trusted agent in an A2A network to intercept and redirect delegated tasks.

walkthroughsa2aimpersonationmulti-agent

Advanced

Full Engagement: Multi-Agent Platform

Full red team engagement of a multi-agent platform with MCP servers and A2A communication.

walkthroughsengagementmulti-agentplatform

Expert

Full Engagement: Enterprise Multi-Agent System

Full engagement of an enterprise multi-agent system with specialized agents for HR, IT, Finance, and Legal.

walkthroughsengagementmulti-agententerprise

Expert

AutoGen Multi-Agent System Testing

End-to-end walkthrough for security testing AutoGen multi-agent systems: agent enumeration, inter-agent injection, code execution sandbox assessment, conversation manipulation, and escalation path analysis.

autogenmulti-agentcode-executionagent-injectionconversation-controlsandboxwalkthrough

Advanced