GET INVOLVED
Research Initiative: Agentic Application Security
The Agentic Security Research Initiative explores the emerging security implications of agentic systems, particularly those utilizing advanced frameworks (e.g., LangGraph, AutoGPT, CrewAI) and novel capabilities like Llama 3’s agentic features.
ANNOUNCEMENT!
OWASP Reveals Updated 2025 Top 10 Risks for LLMs, Sponsorship Program, Inaugural Sponsors
The updated Top 10 List for LLMs provides a refreshed resource addressing the top 10 risks. Changes to the 2025 list include, Unbounded Consumption, Vector and Embeddings (expanded RAG guidance), System Prompt Leakage, and more.
ANNOUNCEMENT!
Top 10 for LLM Project, Expands Initiatives & Publishes New AI Security Guidance
Announcement highlights new initiatives for AI Threat Intelligence, Secure AI Adoption and AI Security Landscape and new security guidance for responding to DeepFake threats and setting up am AI Security Center of Excellence,
NEW!
Explore The AI Security Solutions Landscape
The AI Security Landscape connects the risks identfied in the Top 10 for LLMs, LLMSecOps and the open source and commercial solutions designed to secure GenAI applications at each stage of the lifecycle from planning to governing and everything in-between.
NEW!
Deepfake Threat Preparation and Response Guidance
The OWASP Top 10 for LLM team is excited to announce the release of the Guide for Preparing and Responding to Deepfake Events. This comprehensive resource provides organizations with practical strategies to mitigate the growing risk posed by deepfake technology.
NEW!
AI Security Center of Excellence Guide
Establishing a Center of Excellence (COE) for Generative AI Security has become essential. The document provides a best practices framework from Security Professionals and CISOs to help teams accelerate implementation including cross-functional OKRs and KPIs.
GET INVOLVED
Research Initiative: AI Red Teaming & Evaluation
This is your invitation and an opportunity for you to flex your hacker muscles and dive into the murky waters of Large Language Model (LLM) vulnerabilities. We’re putting together a team to map and tackle the OWASP Top Ten vulnerabilities for LLM applications, and we want you on board.
The Top 10 Security Risks for LLM Applications
This document is the latest exciting chapter in the ongoing efforts to enhance security in the rapidly evolving field of artificial intelligence.
MISSED US @ RSA ?
The OWASP AI Security Summit is On Demand
Dive deep into securing LLMs and generative AI at the AI Security Summit @ RSA Conference in San Francisco, hosted by OWASP. Discover expert strategies to combat the OWASP Top 10 for LLM identified security vulnerabilities, to stay ahead of threat actors.
Join the Newsletter
Introduction
Businesses, eager to harness the potential of LLMs and Generative AI are rapidly integrating them into their operations and client facing offerings. Yet, the breakneck speed at which LLMs are being adopted and the rapid evolution of Gen AI application architectures (e.g. RAG, agentic apps) have outpaced the establishment of comprehensive security and risk management protocols, leaving many applications and their organizations vulnerable to high-risk issues.
Who is it for?
Our primary audiences include technology and business leaders, developers, data scientists, and security experts tasked with developing, building and managing the security risks of applications leveraging LLM and Generative AI technologies.
Affiliated Standards Organizations and Projects
Explore the Top 10 for 2025
Creating the OWASP Top 10 for LLM Applications list is a significant undertaking, built on the collective expertise of an international team of more than 500 experts and over 150 active contributors. Our contributors come from diverse backgrounds, including AI companies, security companies, ISVs, cloud hyperscalers, hardware providers, and academia.
View the Top 10 for LLMs 2023-24.
What The Industry Is Saying
“‘The OWASP Guide to Preparing and Responding to Deepfake Events’ very clearly outlines the current threats and guidance on how to deal with some specific events. This guide acts as. . . .
- - Henry Patishman, Executive Vice President for Identity Verification Solutions,
- Regula
“Generative AI is transforming industries at an unprecedented rate, but with that innovation comes new security challenges. The OWASP Top 10 for LLM project helps ensure that businesses are not. . . .
- - Rich Campagna, SVP, Product Management, NextGen Firewall,
- Palo Alto Networks
¨The OWASP Top 10 for LLMs has become an indispensable resource for organizations addressing the challenges of Generative AI threats. As the project continues to evolve, it provides vital guidance. . . .
- - Itamar Golan, CEO & Co-founder of Prompt Security,
“We’re proud to sponsor and contribute to the OWASP LLM Top 10 project, a pioneering collaboration to establish essential security standards for confident Generative AI adoption, providing actionable insights to. . . .
- - Lasso Security,
“Snyk is proud to sponsor these latest OWASP findings that ultimately help to advance a shared mission to secure AI-generated code. Together, we’re ensuring the world’s developers have expert-accurate, effortless. . . .
- Snyk
“HiddenLayer is proud to partner with OWASP, a leader in advancing security for AI. Their focus on tackling the biggest risks to LLMs supports our mission to secure AI and. . . .
- - Chris Sestito, CEO and Co-Founder,
- HiddenLayer
“PromptArmor is proud to contribute our novel threat intelligence on AI risks to the OWASP Top 10 for LLMs project, and is excited to sponsor the project’s mission to create. . . .
- PromptArmor
“The 2025 OWASP Top 10 for LLMs effectively debunks the misconception that securing GenAI is solely about protecting the model or analyzing prompts. The research offers valuable insights into how. . . .
- - Rehan Jalil, CEO,
- Securiti AI
The unique value of this project lies in its systematic organization of threats and clear definition of necessary solutions across the LLM Ops lifecycle, particularly significant in today’s emerging GenAI. . . .
- NRI Secure
“OWASP’s AI Security Solutions Landscape is a landmark guide for security professionals. It outlines key risks and critical controls for securing LLMs and Generative AI applications, while highlighting the innovative. . . .
- - Gilad Elyashar, Chief Product Officer,
- Aqua Security
Frequently Asked Questions
The OWASP Top 10 for LLMs is a list of the most critical vulnerabilities found in applications utilizing LLMs. It was created to provide developers, data scientists, and security experts with practical, actionable, and concise security guidance to navigate the complex and evolving terrain of LLM security
The primary audience is developers, data scientists, and security experts tasked with designing and building applications and plug-ins leveraging LLM technologies.
While the list shares DNA with vulnerability types found in other OWASP Top 10 lists, it does not simply reiterate these vulnerabilities. Instead, it delves into the unique implications these vulnerabilities have when encountered in applications utilizing LLMs. The goal is to bridge the divide between general application security principles and the specific challenges posed by LLMs
The creation of the OWASP Top 10 for LLMs list was a major undertaking, built on the collective expertise of an international team of nearly 500 experts, with over 125 active contributors. The team brainstormed and proposed potential vulnerabilities, refined these proposals down to a concise list of the ten most critical vulnerabilities, and each vulnerability was then further scrutinized and refined by dedicated sub-teams and subjected to public review.
Yes, the first version of the list will not be the last. The team expects to update it on a periodic basis to keep pace with the state of the industry. They will be working with the broader community to push the state of the art, and creating more educational materials for a range of uses.
In the News
OWASP Top 10 Risks for Large Language Models: 2025 updates
- Barracuda Networks
- 2024-11-20
- Blog
OWASP Warns of Growing Data Exposure Risk from AI in New Top 10 List for LLMs
- Infosecurity Magazine
- 2024-11-20
- James Coker
OWASP Top 10 for LLM and new tooling guidance targets GenAl security
- Reversing Labs
- 2024-11-14
- John P. Mello Jr
OWASP Releases AI Security Resources
- Security Boulevard
- 2024-11-08
- Juan Perez
Events
- In-Person
- Sep
- 21
- Sep
- 22
InfoSec World 2024
- In-Person
- Sep
- 10
- Sep
- 12
Cloud Security Alliance – SECtember.AI
- Virtual
- Sept
- 5
RSAC 365 Virtual Seminar: Intersection of AI & Security
- In-Person
- Sep
- 23
- Sep
- 24