← Back to search
paper reviewed open access llmsec-2024-00012

AgentDojo: A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents

Edoardo Debenedetti, Jie Zhang, Mislav Balunovic, Luca Beurer-Kellner, Marc Fischer, Florian Tramer

2024-06 — arXiv preprint 75 citations
View Resource PDF

Abstract

Introduces AgentDojo, a framework for evaluating the security of LLM agents against prompt injection and other attacks in realistic tool-use scenarios.

Categories

agentic threats prompt injection benchmarks tool use security

Tags

agent-securityevaluation-frameworktool-use

Framework Mappings

OWASP LLM: LLM01 OWASP LLM: LLM06 OWASP Agentic: AGT02 OWASP Agentic: AGT03 MITRE ATLAS: AML.T0051 MITRE ATLAS: AML.T0057

Cite This Resource

@article{llmsec202400012,
  title = {AgentDojo: A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents},
  author = {Edoardo Debenedetti and Jie Zhang and Mislav Balunovic and Luca Beurer-Kellner and Marc Fischer and Florian Tramer},
  year = {2024},
  journal = {arXiv preprint},
  url = {https://arxiv.org/abs/2406.13352},
}

Metadata

Added
2026-04-14
Added by
manual
Source
manual
arxiv_id
2406.13352