Co-Founder @ AltaySec | AI Security for Turkish & Global LLMs
LLM Security · Prompt Injection · Jailbreak Defense · AI Red & Blue Teaming
Profile · AltaySec · Research · Hugging Face · LinkedIn · Medium · ORCID · Speaker profile
I am an AI security founder and Co-Founder of AltaySec, specializing in Turkish and global LLM security, prompt injection, jailbreak defense, and AI red/blue teaming.
My work covers both sides of AI security: understanding how LLM applications fail under adversarial use, and developing the defensive controls, datasets, tools, and operating practices needed to deploy them more securely.
At AltaySec, we are building one of Turkey's most focused AI security ecosystems. Product development, security research, education, open technical resources, and community work all move within the same structure.
- LLM application security
- Prompt injection and jailbreak defense
- AI red teaming and adversarial testing
- AI blue teaming and defensive engineering
- AI agent, tool-use, RAG, and memory security
- Turkish and multilingual LLM attack surfaces
An open collection of ten evidence-driven security skills for Codex and compatible agents: six for AI security and four for core cybersecurity work.
- AI threat modeling, prompt injection, agentic security, RAG security, LLM red teaming, and guardrail evaluation
- Web application security, API security, cloud IAM, and incident triage
- Explicit authorization boundaries, evidence rules, output contracts, and quality gates
- 40 positive, edge, safety, and non-trigger eval cases with automated collection validation
GitHub repository · v1.0.0 release
A reproducible, pair-aware evaluation toolkit for prompt-injection detectors and LLM guardrails. It measures attack detection and legitimate-user false positives in the same run, with offline, Python, HTTP, and Promptfoo workflows.
- TP, FP, TN, FN, false-positive rate, and paired-boundary analysis
- Per-family, category, source-context, and split reporting
- Local JSONL and Hugging Face dataset loading
- Privacy-minimized JSON, Markdown, and JSONL reports
- Tested on Python 3.10, 3.12, and 3.14
GitHub repository · v0.1.0 release
An English dataset for testing whether security controls can distinguish legitimate workflows from prompt-injection attempts that reuse the same roles, tools, assets, and vocabulary.
- 1,200 examples arranged as 600 controlled benign/attack pairs
- 50 enterprise and agentic workflow scenarios
- 12 attack families covering instruction, authorization, confidentiality, tool-use, retrieval, memory, trust, and approval boundaries
- Scenario-isolated train, validation, and test splits
- Deterministic build, validation, checksums, and an interactive pair explorer
GitHub repository · Hugging Face dataset · Interactive explorer · v1.0.0 release
An open Turkish dataset built to study the boundary between legitimate user intent and prompt-injection behavior.
- 750 unique Turkish examples
- 600 legitimate user requests and 150 prompt-injection attacks
- 150 matched benign boundary cases
- 10 attack families, including direct injection, system-prompt extraction, role-play jailbreaks, indirect injection, agent/tool abuse, RAG and memory poisoning, and obfuscation
- Reproducible train, validation, and test splits in JSONL and Parquet formats
GitHub repository · Hugging Face dataset
| Project | Scope |
|---|---|
| AI & Cybersecurity Skills | Ten evidence-driven AI security and cybersecurity skills for Codex and compatible agents |
| LLM Security Testbench | Pair-aware evaluation for prompt-injection detectors and LLM guardrails |
| Agentic Prompt-Injection Boundary Pairs | English paired dataset for agentic workflows and trust-boundary testing |
| Turkish Conversation Prompt-Injection | Turkish LLM-security dataset with paired benign and attack examples |
| Mini-SIEM | Log collection, threat detection, and MITRE ATT&CK mapping |
| Log Anomaly Detector | Python-based log analysis and anomaly investigation |
| Mini Directory Scan | Web directory scanner with soft-404 detection and structured reporting |
- A Prompt-Injection Dataset Should Test Boundaries, Not Keywords
- AI Güvenliği Bir Filtre Meselesi Değil
- Prompt Injection Savunmaları Üretime Girmeden Nasıl Test Edilmeli?
- LLM Güvenliğinde TP, FP, TN ve FN Dengesi
- AltaySec AI Security Research
- Enes Deniz at AltaySec
- Expanding open Turkish and multilingual AI-security resources
- Mapping emerging prompt-injection, agent, RAG, and tool-use attack surfaces
- Building practical red and blue team methodologies for real LLM deployments
- Growing the AltaySec ecosystem through products, education, research, and community programs
- Email: enes@altaysec.com.tr
- LinkedIn: linkedin.com/in/3nesdeniz
- Medium: medium.com/@3nesdeniz
- Hugging Face: huggingface.co/3nesdeniz
- ORCID: 0009-0006-9491-3565
- Speaker profile: sessionize.com/3nesdeniz



