Agent-Wiz icon indicating copy to clipboard operation
Agent-Wiz copied to clipboard
Published 2 months ago verified publisher icon Repello-AI

[DRAFT] FEAT: Extend Functionality: OWASP Mapping, Agentic Threats & Auto-Generated Attack Scenarios

Open KutalVolkan opened this issue 8 months ago • 1 comments

Hey Team,

This project looks really promising, great job!!! 🙌

Suggestions for Enhancement

  1. OWASP Top Ten for LLMs

    • Map findings to the OWASP Top Ten for LLMs

  2. Agentic Threats & Mitigations

    • Integrate concepts from the Agentic Threats and Mitigation Guide (T1-T15).

  3. Auto-Generated Attack Scenarios

    • Let the tool generate attack scenarios based on the codebase and architecture overview.
    • Since it has access to most of the code, it could suggest realistic, contextual attack vectors.

  4. Optional Input Extensions

    • Support image uploads (e.g., architecture diagrams) or other rich content to further enhance scenario generation.

KutalVolkan avatar Apr 10 '25 07:04 KutalVolkan

Thanks @KutalVolkan for opening this issue and your suggestions. These sound very exciting and we'll be picking them one by one to improve threat modeling by Agent-Wiz. Broadly we want the threat model to be filled with actionable insights as the project matures.

Really like point 3 - can keep it in the long-term vision, meanwhile points 1 & 2 can be implemented asap. Feel free to open a PR! We'd love to have your contribution to the project.

Cheers!

CoderMayhem avatar Apr 11 '25 02:04 CoderMayhem