Which frameworks are included in the methodology?

The skill integrates industry standards such as MITRE ATT&CK for cyber operations and OWASP Top 10 LLM for AI security.

Does this skill support AI/LLM safety testing?

Yes, it includes specific guidance for identifying prompt injection, jailbreaking resistance, and data leakage in Large Language Models.

What is the difference between this skill and a standard pen test?

While pen testing focuses on finding technical vulnerabilities in a limited scope, this skill provides a holistic, goal-oriented methodology that tests people, processes, and technology covertly.

Can I use this for regulatory compliance?

Absolutely. It provides frameworks suitable for validating security posture against DORA, TIBER, NIST AI RMF, and the EU AI Act.

Red Teaming Methodology

Name: Red Teaming Methodology
Author: rfxlamia

byrfxlamia

•

安全与测试

Conducts comprehensive adversarial security assessments across traditional cybersecurity environments and AI/LLM systems using industry-standard frameworks.

This skill provides a structured methodology for simulating real-world attacks to validate organizational security posture and AI model safety. It guides users through the entire red teaming lifecycle—from planning and reconnaissance to execution and reporting—incorporating specialized techniques for both network penetration (MITRE ATT&CK) and LLM vulnerability assessment (prompt injection, jailbreaking). It is an essential resource for security professionals looking to move beyond simple vulnerability scanning into deep, goal-oriented security validation and compliance alignment with standards like NIST AI RMF and OWASP.

主要功能

01Adversary emulation using MITRE ATT&CK and OWASP Top 10 LLM frameworks

02Comprehensive 4-phase methodology covering planning, recon, execution, and reporting

03Guidance on compliance validation for DORA, TIBER, and the EU AI Act

0442 GitHub stars

05Specialized AI safety testing including prompt injection and jailbreak simulation

06Actionable reporting templates and remediation roadmap development

使用场景

01Conducting realistic adversary simulations to test organizational detection and response

02Validating the security of LLM-powered applications before production deployment

03Preparing for regulatory security audits and compliance certifications

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add rfxlamia/claude-skillkit red-teaming

For use in Claude.ai and ChatGPT

Download Skill