| layout | title | level | type | tags | pitch |
|---|---|---|---|---|---|
col-sidebar |
OWASP Top 10 for Large Language Model Applications |
2 |
documentation |
example-tag |
Aims to educate developers, designers, architects, managers, and organizations about the potential security risks when deploying and managing Large Language Models (LLMs) |
The OWASP Top 10 for Large Language Model Applications Project aims to educate developers, designers, architects, managers, and organizations about the potential security risks when deploying and managing Large Language Models (LLMs) and Generative AI applications. The project provides a range of resources. Most notably the OWASP Top 10 list for LLM applications listing the top 10 most critical vulnerabilities often seen in LLM applications, highlighting their potential impact, ease of exploitation, and prevalence in real-world applications.
Examples of vulnerabilities include prompt injections, data leakage, inadequate sandboxing, and unauthorized code execution, among others. The goal is to raise awareness of these vulnerabilities, suggest remediation strategies, and ultimately improve the security posture of LLM applications.
Download OWASP Top 10 for LLMs List for 2025 Full Version.
Download Additional Resources from our Website including:
- Security & Governance Checklist v1.0 Essential guidance for CISOs managing the rollout of Gen AI technology.
- Guide for Preparing and Responding to DeepFakes
- 2025 AI Security Solutions Directory and Guide
- Security & Governance Checklist v1.0 - also now available in French and Japanese
- We have a working group channel on the OWASP Slack, so please sign up and then join us on the #project-top10-for-llm channel.
- The working group is collaborating on our wiki
- Want to stay updated on periodic progress? Subscribe to our newsletter or Follow our project LinkedIn page
New to LLM Application security? Check out our resources page to learn more.
We are a not for profit open source community driven project. If you are interested in supporting the project with reasources or become a sponsor to help us ensure we can continue to sustain the community efforts, offsetting operational, and outreach costs. Visit the Sponsor Section on our website.