Skip to content
View 3nesdeniz's full-sized avatar

Highlights

  • Pro

Block or report 3nesdeniz

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
3nesdeniz/README.md

AltaySec

Enes Deniz

Co-Founder @ AltaySec | AI Security for Turkish & Global LLMs

LLM Security · Prompt Injection · Jailbreak Defense · AI Red & Blue Teaming

Profile · AltaySec · Research · Hugging Face · LinkedIn · Medium · ORCID · Speaker profile

I am an AI security founder and Co-Founder of AltaySec, specializing in Turkish and global LLM security, prompt injection, jailbreak defense, and AI red/blue teaming.

My work covers both sides of AI security: understanding how LLM applications fail under adversarial use, and developing the defensive controls, datasets, tools, and operating practices needed to deploy them more securely.

At AltaySec, we are building one of Turkey's most focused AI security ecosystems. Product development, security research, education, open technical resources, and community work all move within the same structure.

Areas of expertise

  • LLM application security
  • Prompt injection and jailbreak defense
  • AI red teaming and adversarial testing
  • AI blue teaming and defensive engineering
  • AI agent, tool-use, RAG, and memory security
  • Turkish and multilingual LLM attack surfaces

Featured work

AI & Cybersecurity Skills

An open collection of ten evidence-driven security skills for Codex and compatible agents: six for AI security and four for core cybersecurity work.

  • AI threat modeling, prompt injection, agentic security, RAG security, LLM red teaming, and guardrail evaluation
  • Web application security, API security, cloud IAM, and incident triage
  • Explicit authorization boundaries, evidence rules, output contracts, and quality gates
  • 40 positive, edge, safety, and non-trigger eval cases with automated collection validation

GitHub repository · v1.0.0 release

LLM Security Testbench

A reproducible, pair-aware evaluation toolkit for prompt-injection detectors and LLM guardrails. It measures attack detection and legitimate-user false positives in the same run, with offline, Python, HTTP, and Promptfoo workflows.

  • TP, FP, TN, FN, false-positive rate, and paired-boundary analysis
  • Per-family, category, source-context, and split reporting
  • Local JSONL and Hugging Face dataset loading
  • Privacy-minimized JSON, Markdown, and JSONL reports
  • Tested on Python 3.10, 3.12, and 3.14

GitHub repository · v0.1.0 release

Agentic Prompt-Injection Boundary Pairs

An English dataset for testing whether security controls can distinguish legitimate workflows from prompt-injection attempts that reuse the same roles, tools, assets, and vocabulary.

  • 1,200 examples arranged as 600 controlled benign/attack pairs
  • 50 enterprise and agentic workflow scenarios
  • 12 attack families covering instruction, authorization, confidentiality, tool-use, retrieval, memory, trust, and approval boundaries
  • Scenario-isolated train, validation, and test splits
  • Deterministic build, validation, checksums, and an interactive pair explorer

GitHub repository · Hugging Face dataset · Interactive explorer · v1.0.0 release

Turkish Conversation Prompt-Injection Dataset

An open Turkish dataset built to study the boundary between legitimate user intent and prompt-injection behavior.

  • 750 unique Turkish examples
  • 600 legitimate user requests and 150 prompt-injection attacks
  • 150 matched benign boundary cases
  • 10 attack families, including direct injection, system-prompt extraction, role-play jailbreaks, indirect injection, agent/tool abuse, RAG and memory poisoning, and obfuscation
  • Reproducible train, validation, and test splits in JSONL and Parquet formats

GitHub repository · Hugging Face dataset

Selected engineering

Project Scope
AI & Cybersecurity Skills Ten evidence-driven AI security and cybersecurity skills for Codex and compatible agents
LLM Security Testbench Pair-aware evaluation for prompt-injection detectors and LLM guardrails
Agentic Prompt-Injection Boundary Pairs English paired dataset for agentic workflows and trust-boundary testing
Turkish Conversation Prompt-Injection Turkish LLM-security dataset with paired benign and attack examples
Mini-SIEM Log collection, threat detection, and MITRE ATT&CK mapping
Log Anomaly Detector Python-based log analysis and anomaly investigation
Mini Directory Scan Web directory scanner with soft-404 detection and structured reporting

Writing and research

Current priorities

  • Expanding open Turkish and multilingual AI-security resources
  • Mapping emerging prompt-injection, agent, RAG, and tool-use attack surfaces
  • Building practical red and blue team methodologies for real LLM deployments
  • Growing the AltaySec ecosystem through products, education, research, and community programs

Contact

Pinned Loading

  1. turkish-conversation-prompt-injection turkish-conversation-prompt-injection Public

    Curated Turkish prompt-injection dataset by Enes Deniz, with paired benign and attack examples for LLM security and AI red/blue teaming.

    Ruby 3

  2. llm-security-testbench llm-security-testbench Public

    Reproducible, pair-aware evaluation for prompt-injection detectors and LLM guardrails.

    Python

  3. Agent-Security-Regression-Harness Agent-Security-Regression-Harness Public

    Forked from OWASP/Agent-Security-Regression-Harness

    Executable security regression testing for agentic applications and MCP-integrated systems.

    Python

  4. agentic-prompt-injection-boundary-pairs agentic-prompt-injection-boundary-pairs Public

    Curated English dataset of 600 matched benign and attack pairs for agentic prompt-injection and trust-boundary testing.

    Ruby

  5. promptfoo/promptfoo promptfoo/promptfoo Public

    Test your prompts, agents, and RAGs. Red teaming/pentesting/vulnerability scanning for AI. Compare performance of GPT, Claude, Gemini, DeepSeek, and more. Simple declarative configs with command li…

    TypeScript 23.3k 2.1k

  6. microsoft/PyRIT microsoft/PyRIT Public

    The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.

    Python 4.1k 808