# engagement

scopingrules-of-engagementauthorizationmethodologytradecraftengagement

Scoping & Rules of Engagement

Defining scope, rules of engagement, authorization boundaries, and success criteria for AI red team engagements, with templates and checklists for common engagement types.

agentengagementfunction-callingtool-abusepermission-escalationwalkthrough

代理 System 紅隊 Engagement

Complete walkthrough for testing tool-using AI agents: scoping agent capabilities, exploiting function calling, testing permission boundaries, multi-step attack chains, and session manipulation.

apiengagementauthenticationrate-limitinginput-validationmodel-fingerprintingwalkthrough

AI API 紅隊 Engagement

Complete walkthrough for testing AI APIs: endpoint enumeration, authentication bypass, rate limit evasion, input validation testing, output data leakage, and model fingerprinting through API behavior.

chatbotengagementprompt-injectionsystem-promptcontent-filterwalkthrough

Chatbot 紅隊 Engagement

Step-by-step walkthrough for a complete chatbot red team assessment: scoping, system prompt extraction, content filter bypass, PII leakage testing, multi-turn manipulation, and professional reporting.

walkthroughsengagementcode-assistantsecurity

Full 演練: AI Code Assistant

End-to-end engagement for assessing an AI-powered code assistant with repository access.

generationcontentengagementwalkthroughsengagements

Full 演練: Content Generation Platform

Full engagement walkthrough for a content generation AI platform with brand safety and copyright concerns.

analyticsengagementcustomerwalkthroughsengagements

完整演練：客戶分析 AI 安全評估

Red team engagement for an AI-powered customer analytics system processing sensitive behavioral data.

devtoolsengagementwalkthroughsengagements

Full 演練: AI Developer Tools

End-to-end engagement for AI-powered developer tools with repository access and code execution capabilities.

educationalplatformengagementwalkthroughsengagements

Full 演練: Educational AI Platform

End-to-end engagement walkthrough for an AI-powered educational platform with student safety requirements.

walkthroughsengagementfinancialadvisor

Full 演練: AI Financial Advisor

Full engagement for assessing an AI financial advisor chatbot handling investment recommendations.

governmentengagementwalkthroughsengagements

Full 演練: Government AI System

Full red team engagement for a government-deployed AI system with classification and compliance requirements.

walkthroughsengagementhealthcarecompliance

Full 演練: Healthcare AI System

End-to-end engagement walkthrough for a healthcare AI system with HIPAA compliance requirements.

walkthroughsengagementinternalknowledge-bot

完整演練：內部知識機器人安全評估

Full engagement walkthrough for an internal enterprise knowledge bot with RAG and document access.

walkthroughsengagementmulti-agentplatform

完整演練：多代理平台安全評估

Full red team engagement of a multi-agent platform with MCP servers and A2A communication.

walkthroughsengagementsaaschatbot

Full 演練: SaaS Customer Chatbot

End-to-end engagement walkthrough for assessing a SaaS customer-facing chatbot with tool access.

auditsupplychainengagementwalkthroughsengagements

Full 演練: ML Supply Chain Audit

End-to-end engagement walkthrough for auditing an organization's ML model supply chain security.

multi-modelengagementmodel-routingorchestrationfallbackwalkthrough

Multi-模型 System 紅隊 Engagement

Complete walkthrough for testing systems that use multiple AI models: model-to-model injection, routing logic exploitation, fallback chain abuse, inter-model data leakage, and orchestration layer attacks.

ragengagementdocument-injectionembeddingretrievaldata-exfiltrationwalkthrough

RAG System 紅隊 Engagement

Complete walkthrough for testing RAG applications: document injection, cross-scope retrieval exploitation, embedding manipulation, data exfiltration through retrieval, and chunk boundary attacks.

walkthroughsengagementcoding-agentautonomous

Full 演練: Autonomous Coding Agent

End-to-end engagement for an autonomous AI coding agent with repo access, CI/CD integration, and deployment.

walkthroughsengagementcontent-generationplatform

Full 演練: AI Content Generation Platform

Red team engagement of an AI content generation platform used for marketing, SEO, and social media.

walkthroughsengagementcustomer-supportmulti-tool

Full 演練: Multi-Tool Customer Support Agent

End-to-end engagement for a customer support agent with order management, refund processing, and CRM access.

walkthroughsengagementdevopsinfrastructure

Full 演練: DevOps AI Assistant

End-to-end engagement for a DevOps AI assistant with CI/CD, cloud infrastructure, and monitoring access.

walkthroughsengagementdocument-processingpipeline

Full 演練: Document Processing Pipeline

Full engagement of an AI document processing pipeline handling invoices, contracts, and compliance documents.

walkthroughsengagementeducationplatform

Full 演練: AI Education Platform

End-to-end engagement walkthrough for assessing an AI-powered education platform with tutoring and grading.

walkthroughsengagementgovernmentcitizen-services

Full 演練: Government Citizen Services AI

Red team engagement of a government citizen services AI handling tax, benefits, and identity verification.

walkthroughsengagementhrbenefits

Full 演練: HR Benefits Chatbot

Full engagement walkthrough for an HR benefits chatbot with access to employee records and benefits administration.

walkthroughsengagementinsuranceunderwriting

Full 演練: AI Insurance Underwriting

Full engagement for an AI underwriting system with risk scoring, policy generation, and claims data access.

walkthroughsengagementlegalresearch

Full 演練: Legal Research AI System

Full red team engagement of a legal research AI with case law access, privilege management, and citation generation.

walkthroughsengagementmulti-agententerprise

Full 演練: Enterprise Multi-Agent System

Full engagement of an enterprise multi-agent system with specialized agents for HR, IT, Finance, and Legal.

walkthroughsengagementretailpersonalization

Full 演練: Retail Personalization AI

Red team engagement of an AI personalization engine with access to customer profiles and purchase history.

walkthroughsengagementsecuritycopilot

Full 演練: AI Security Copilot

Red team engagement of an AI security copilot with access to SIEM, vulnerability scanners, and threat intelligence.

walkthroughsengagementsupply-chainoptimizer

Full 演練: Supply Chain AI Optimizer

End-to-end engagement for a supply chain AI with access to logistics, inventory, and supplier management systems.

walkthroughsengagementtelehealthhealthcare

Full 演練: Telehealth AI Assistant

End-to-end engagement for a telehealth AI assistant with appointment scheduling, symptom assessment, and EHR access.

engagementkickoffscoperules-of-engagementlegalmethodologywalkthrough

委任啟動流程指南

啟動 AI 紅隊委任的逐步指南：客戶初次會議、範圍界定、交戰規則、法律協議、環境設置與工具選擇。

methodologyengagementworkflowprocesswalkthrough

方法論導覽

AI 紅隊案件每個階段的逐步導覽：啟動、偵察、攻擊執行與報告撰寫。

scopingengagementplanningmethodologystatement-of-workrisk-assessmentwalkthrough

How to Scope an AI 紅隊 Engagement

Comprehensive walkthrough for scoping AI red team engagements from initial client contact through statement of work, covering target enumeration, risk-based prioritization, resource estimation, boundary definition, and legal considerations.