What is an LLM vulnerability scanner?

An LLM vulnerability scanner sends batteries of adversarial probes — jailbreaks, prompt injections, PII extraction attempts, harmful-content requests — at a target LLM and grades the responses. The output is a vulnerability + optimization report with per-probe evidence, severity, and a prioritized fix list.

Which LLMs can I scan with FilterPrompt?

OpenAI, Anthropic, Google Gemini, Azure OpenAI, plus any OpenAI-compatible endpoint — Ollama, Groq, Mistral, Together AI, OpenRouter, Perplexity, Hugging Face, vLLM, or your own custom endpoint. Bring your own keys per tenant.

What kinds of vulnerabilities does FilterPrompt test for?

Jailbreaks (DAN, role hijack, translation smuggling), direct and indirect prompt injection, system-prompt extraction, harmful-content compliance, PII / secret leakage, bias & fairness, RAG poisoning, agent/tool abuse, output quality, and robustness — categories map to the OWASP LLM Top 10.

How are probes graded?

Each probe declares an evaluator: regex match, refusal-check, contains-check, or an AI judge (Gemini 3 Flash). Pass/fail comes with severity, category, the exact prompt sent, the model's full response, and the evaluator's reason — fully auditable.

How much does a scan cost?

1 credit per probe executed. New accounts get 1 welcome credit on signup. Pay-as-you-go credit packs after that — credits never expire. Connecting LLMs and creating tenants is free.

About FilterPrompt

FilterPrompt is built by an LLM security research team focused on prompt injection, PII redaction, and the OWASP LLM Top 10. We ship the proxy, the detectors, and the audit tooling as one product.

What we believe

LLM apps need the same input/output controls every other production system has. The right place for those controls is a proxy in front of the model — not buried inside application code that ships with every release.

What we ship

Provider-agnostic OpenAI-compatible proxy
Layered detection pipeline (rules + ML + structural)
Multi-tenant gateway with per-tenant quotas, rules, and IP policy
Audit logs and verdict replay
Open benchmark methodology

Product overview
Engineering blog

About FilterPrompt

What we believe

What we ship

Related