AISeal Scan

TrustScan

Test a prompt against the OWASP LLM Top 10. Get a TrustScore instantly.

Prompt to test

Target Model

Scan Mode

45/ 100

CRITICAL RISK

TrustScore

Scan Summary

Model: Claude Sonnet 4.6

3/29/2026, 9:15:00 AM · 142 chars

Passed

Warnings

Failed

⚠️

What this means for your business

▸
AI Hijacking Attempt: Someone tried to override your AI's instructions and make it behave in unauthorized ways — like a burglar swapping your security guard with their own guy.
▸
Unauthorized Actions: Your AI was asked to perform high-risk actions like deleting files, running commands, or making system changes it shouldn't have access to.
▸
System Instructions Leaked: Someone tried to trick your AI into revealing its secret instructions or internal configuration — like asking a magician to show you their tricks.

Scroll down for technical details and recommended actions for your security team.

OWASP LLM Top 10 Breakdown

10 categories checked

FAIL

LLM01AI Hijacking Attemptcritical

Someone tried to override your AI's instructions and make it behave in unauthorized ways — like a burglar swapping your security guard with their own guy.

→ Add input validation and restrict what your AI will accept from users.

Prompt injection pattern detected — attempt to override model instructions.

PASS

LLM02Sensitive Data Exposure

No sensitive data patterns detected.

PASS

LLM03Untrusted AI Components

No issues detected via static analysis. Dynamic testing recommended.

PASS

LLM04Poisoned Instructions

No issues detected via static analysis. Dynamic testing recommended.

PASS

LLM05Dangerous Code Output

No unsafe output handling patterns detected.

FAIL

LLM06Unauthorized Actionshigh

Your AI was asked to perform high-risk actions like deleting files, running commands, or making system changes it shouldn't have access to.

→ Apply least-privilege rules — your AI should only do what it absolutely needs to.

Prompt requests high-privilege or destructive actions — excessive agency risk.

WARN

LLM07System Instructions Leakedmedium

Someone tried to trick your AI into revealing its secret instructions or internal configuration — like asking a magician to show you their tricks.

→ Never rely on hidden prompts for security. Treat system prompts as non-secret.

Prompt attempts to extract system prompt or internal instructions.

PASS

LLM08Knowledge Base Tampering

No issues detected via static analysis. Dynamic testing recommended.

PASS

LLM09Hallucination Risk

No issues detected via static analysis. Dynamic testing recommended.

PASS

LLM10Resource Abuse

No issues detected via static analysis. Dynamic testing recommended.

NIST AI RMF Framework Alignment

NIST AI 100-1 · Govern · Map · Measure · Manage

GOVERNMAPMEASUREMANAGE

LLM01Prompt Injection

MEASUREMANAGE

Secure & Resilient

LLM02Sensitive Information Disclosure

MAPMANAGE

Privacy-Enhanced

LLM03Supply Chain Vulnerabilities

GOVERNMAP

Secure & Resilient

LLM04Data and Model Poisoning

MAPMEASURE

Valid & Reliable

LLM05Improper Output Handling

MEASUREMANAGE

Safe

LLM06Excessive Agency

GOVERNMANAGE

Accountable & Transparent

LLM07System Prompt Leakage

MEASUREMANAGE

Accountable & Transparent

LLM08Vector and Embedding Weaknesses

MAPMEASURE

Valid & Reliable

LLM09Misinformation

MAPMEASURE

Valid & Reliable

LLM10Unbounded Consumption

GOVERNMANAGE

Safe

MITRE ATLAS Technique Mapping

Adversarial Threat Landscape for AI Systems · atlas.mitre.org

3 TECHNIQUES TRIGGERED

LLM01Prompt Injection

AML.T0051 · LLM Prompt Injection

LLM02Sensitive Information Disclosure

AML.T0025 · Exfiltration via Cyber Means

LLM03Supply Chain Vulnerabilities

AML.T0010 · ML Supply Chain Compromise

LLM04Data and Model Poisoning

AML.T0020 · Poison Training Data

LLM05Improper Output Handling

AML.T0048 · LLM Jailbreak

LLM06Excessive Agency

AML.T0051 · LLM Prompt InjectionAML.T0040 · ML Inference API Access

LLM07System Prompt Leakage

AML.T0056 · LLM Meta Prompt Extraction

LLM08Vector and Embedding Weaknesses

AML.T0043 · Craft Adversarial Data

LLM09Misinformation

AML.T0048 · LLM Jailbreak

LLM10Unbounded Consumption

AML.T0034 · Cost Harvesting

Pattern analysis byIRIS· Integrated Risk Insight System

IRIS Analysis· Integrated Risk Insight System

Ask IRIS for an executive risk narrative on these findings.

Red Team Suite

Run multiple tests. Get an aggregate score.

Select the scenarios you want to run, or fire the full suite at once.

0 of 9 selected

Test 1 — Clean BaselineTest 2 — Prompt Injection (LLM01)Test 3 — Sensitive Data Disclosure (LLM02)Test 8 — Excessive Agency (LLM06)Test 9 — Multi-Vector (LLM01 + LLM05)Test 10 — Obfuscated Dropper (LLM05) ★Test 11 — MCP Tool Abuse (LLM06)Test 12 — RAG Context Injection (LLM04)Test 13 — Multi-Stage Indirect Injection (LLM01) ★

Pricing

Start free. Scale when you're ready.

Every plan includes full OWASP LLM Top 10 coverage.

Free

$0forever

For individuals and teams evaluating AI security posture.

10 TrustScans per day
Full OWASP LLM Top 10 analysis
TrustScore + exportable report
13-test red team suite