# wandb

4 articlestagged with “wandb”

Attacking Experiment Tracking Systems

Techniques for exploiting experiment tracking platforms like MLflow, Weights & Biases, Neptune, and CometML, including data exfiltration, metric manipulation, experiment injection, and leveraging tracking metadata for reconnaissance.

experiment-trackingmlflowwandbreconnaissancedata-exfiltration

Intermediate

Poisoning Model Registries

Advanced techniques for attacking model registries like MLflow, Weights & Biases, and Hugging Face Hub, including model replacement attacks, metadata manipulation, artifact poisoning, and supply chain compromise through registry infrastructure.

model-registrymlflowwandbsupply-chainpoisoningartifact-security

Advanced

Experiment Tracking Security

Security risks in ML experiment tracking systems: what gets logged, what is sensitive, and how tracking platforms become high-value targets for attackers seeking intellectual property and pipeline access.

experiment-trackingmlflowwandbmetadatasecretsml-security

Intermediate

Weights & Biases Attack Surface

Security analysis of Weights & Biases (W&B/wandb): API key exposure, experiment data leakage, team boundary violations, artifact poisoning, and attack techniques specific to the W&B platform.

wandbweights-and-biasesapi-keysexperiment-trackingartifact-poisoningdata-leakage

Advanced