Defense + Offense + Framework - Complete AI Security Suite
Dragon v4.1 * January 2026
Important
Solo author of this 116K LOC platform with 217 Engines. Available remote. chg@live.ru * @DmLabincev
| I want to... | Go to... |
|---|---|
| Understand the basics | What is Prompt Injection? |
| Scan my first prompt | Quickstart (10 min) |
| Learn OWASP LLM Top 10 | OWASP Lesson |
| Protect my chatbot | Protection Guide |
π Beginner (11) Β· π Mid-Level (16) Β· π Expert (21)
| Π₯ΠΎΡΡ... | ΠΠ΅ΡΠ΅ΠΉΡΠΈ... |
|---|---|
| ΠΠΎΠ½ΡΡΡ ΠΎΡΠ½ΠΎΠ²Ρ | Π§ΡΠΎ ΡΠ°ΠΊΠΎΠ΅ Prompt Injection? |
| ΠΠ΅ΡΠ²ΡΠΉ ΠΏΡΠΎΠΌΠΏΡ | ΠΡΡΡΡΡΠΉ ΡΡΠ°ΡΡ |
| OWASP LLM Top 10 | Π£ΡΠΎΠΊ OWASP |
| ΠΠ°ΡΠΈΡΠΈΡΡ ΡΠ°ΡΠ±ΠΎΡΠ° | Π ΡΠΊΠΎΠ²ΠΎΠ΄ΡΡΠ²ΠΎ |
π ΠΠ°ΡΠΈΠ½Π°ΡΡΠΈΠΉ (11) Β· π Π‘ΡΠ΅Π΄Π½ΠΈΠΉ (16) Β· π ΠΠΊΡΠΏΠ΅ΡΡ (21)
π Security Β· ποΈ Architecture Β· π Changelog
| Component | Description | Docs |
|---|---|---|
| BRAIN | Detection Core - 217 Engines, ML + Rules, Strange Mathβ’ | Details |
| SHIELD | AI Security DMZ - Pure C, <1ms latency, 22 Protocols | Details |
| STRIKE | Offensive Platform - 39K+ payloads, HYDRA | Details |
| FRAMEWORK | Python SDK - pip install, CLI, FastAPI | Details |
| IMMUNE | EDR/XDR/MDR - Pure C, Kernel-level | Details |
| RLM-Toolkit | Secure LangChain Replacement | Details |
| SuperClaude Shield | AI Coding Assistant Protection | Details |
pip install sentinel-llm-securityfrom sentinel import scan
result = scan("Ignore previous instructions")
print(result.is_safe) # False# Linux/macOS - Full Stack (Docker)
curl -sSL https://raw.githubusercontent.com/DmitrL-dev/AISecurity/main/sentinel-community/install.sh | bash
# Linux/macOS - Python Only (no Docker)
curl -sSL https://raw.githubusercontent.com/DmitrL-dev/AISecurity/main/sentinel-community/install.sh | bash -s -- --lite
# Windows PowerShell
irm https://raw.githubusercontent.com/DmitrL-dev/AISecurity/main/sentinel-community/install.ps1 | iex| Mode | Command | Description |
|---|---|---|
| Lite | --lite / -Lite |
Python only, pip install, 30 seconds |
| Full | --full / -Full |
Docker stack, all services |
| IMMUNE | --immune |
EDR for DragonFlyBSD/FreeBSD |
| Dev | --dev / -Dev |
Development environment |
pip install rlm-toolkitgit clone https://github.com/DmitrL-dev/AISecurity.git
cd AISecurity/sentinel-community
pip install -e ".[dev]"curl -sSL https://raw.githubusercontent.com/DmitrL-dev/AISecurity/main/install.sh | bashpip install sentinel-llm-security # Core
pip install sentinel-llm-security[cli] # + CLI
pip install sentinel-llm-security[full] # Everything
pip install sentinel-llm-security[strike] # Red Team toolsSENTINEL provides free, auto-updated threat signatures for the community. No API key required!
| File | Description | CDN Link |
|---|---|---|
jailbreaks.json |
Jailbreak patterns from 7 sources | Download |
keywords.json |
Suspicious keyword sets (7 categories) | Download |
pii.json |
PII & secrets detection patterns | Download |
manifest.json |
Version & integrity metadata | Download |
Usage:
fetch('https://cdn.jsdelivr.net/gh/DmitrL-dev/AISecurity@latest/signatures/jailbreaks.json')
.then(r => r.json())
.then(patterns => console.log(`Loaded ${patterns.length} patterns`));Features:
- Updated daily via GitHub Actions
- Free for commercial & non-commercial use
- Community contributions welcome (PRs to
signatures/)
| Pain Point | LangChain | RLM-Toolkit |
|---|---|---|
| Verbosity | 20+ lines for basic RAG | 3-5 lines |
| Debugging | Chain abstraction hell | Clear stack traces |
| Context limits | Manual chunking nightmare | InfiniRetri (unlimited) |
| Memory | Simple buffer | H-MEM (brain-like) |
| Self-improvement | None | R-Zero auto-optimization |
| Security | Add-on afterthought | Built-in from day 1 |
from rlm_toolkit import RLM
rlm = RLM.from_openai("gpt-4o")
response = rlm.run("Hello!") # Done.That's it. No chains. No callbacks. No AbstractBaseFactoryManagerInterface.
| Feature | Who Benefits | Description |
|---|---|---|
| InfiniRetri | π· DevOps | Read 1000+ page documents without hitting token limits |
| H-MEM | π¬ Researchers | 4-level hierarchical memory - works like human brain |
| R-Zero | π¬ Researchers | Challenger-Solver architecture auto-improves outputs |
| Security Suite | πΆ Everyone | Prompt injection detection, Trust Zones, Full audit trail |
9 Tutorials - From "Hello World" to production multi-agent systems
170+ Examples - Battle-tested patterns ready to copy-paste
50+ Integrations - OpenAI, Anthropic, Ollama, all vector stores
217 detection engines analyzing every prompt and response in real-time.
| Category | Engines | Protection |
|---|---|---|
| Injection | 30+ | Prompt injection, jailbreak, Policy Puppetry |
| Agentic | 25+ | RAG poisoning, tool hijacking, memory attacks |
| Mathematical | 15+ | TDA, Sheaf Coherence, Chaos Theory |
| Privacy | 10+ | PII detection, data leakage prevention |
| Supply Chain | 5+ | Pickle security, serialization attacks |
MCP/A2A Protocol Security - SENTINEL protects agentic AI communication protocols.
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β Standard Approach vs SENTINEL Strange Mathβ’ β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ€
β * Keyword matching * Topological Data Analysisβ
β * Regex patterns * Sheaf Coherence Theory β
β * Simple ML classifiers * Hyperbolic Geometry β
β * Static rules * Optimal Transport β
β * Chaos Theory β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
| Engine Category | Precision | Recall | F1 | P50 | P99 |
|---|---|---|---|---|---|
| Injection (Tier 1) | 97% | 94% | 95.5% | 3ms | 12ms |
| Jailbreak (Tier 2) | 95% | 91% | 93% | 8ms | 25ms |
| RAG Poisoning | 92% | 89% | 90.5% | 15ms | 45ms |
| TDA Analyzer (Tier 3) | 89% | 96% | 92.4% | 45ms | 120ms |
| Combined Pipeline | 94% | 93% | 93.5% | 18ms | 85ms |
Tested on SENTINEL Strike payloads + internal validation set. P50/P99 = latency percentiles.
Enterprise-grade AI security DMZ - Pure C, 100% Production Ready
| Metric | Value |
|---|---|
| Status | 100% Production Ready |
| Lines of Code | 36,000+ |
| Source Files | 131 .c, 80 .h |
| Tests | 103/103 pass (94 CLI + 9 LLM) |
| CLI Handlers | 119 |
| Protocols | 22 custom |
| Guards | 6 (LLM, RAG, Agent, Tool, MCP, API) |
cd shield
make clean && make # 0 errors, 0 warnings
make test_all # 94 CLI tests
make test_llm_mock # 9 LLM integration tests- Brain FFI - HTTP + gRPC clients for AI analysis
- TLS/OpenSSL - Secure communications
- Kubernetes - 5 production manifests
- CI/CD - GitHub Actions (6 jobs, Valgrind, ASAN)
- Docker - Multi-stage production build
Shield Docs | K8s YAMLs | Academy π·πΊ | Academy πΊπΈ
Test your AI before attackers do. 39,000+ payloads, HYDRA parallel attacks.
| Feature | Value |
|---|---|
| Payloads | 39,000+ (84 categories) |
| HYDRA Agents | 10 parallel attack heads |
| Crucible CTF | 82/82 challenges |
| Jailbreak Vendors | 33+ tested |
| Who | What Strike Does |
|---|---|
| Red Teams | Full AI application penetration testing |
| Bug Bounty | Automated AI vulnerability discovery |
| Enterprise | Pre-deployment security validation |
| Researchers | Attack methodology development |
The pytest of AI Security - Embed SENTINEL directly in your code.
from sentinel import scan, guard
# One-liner scan
result = scan("Ignore all previous instructions")
print(result.is_safe) # False
print(result.risk_score) # 0.72
# Decorator protection
@guard(engines=["injection", "pii"])
def my_llm_function(prompt: str) -> str:
return call_openai(prompt)sentinel scan "Hello world" # Quick scan
sentinel scan "test" --format sarif # IDE integration
sentinel engine list # List 217 Engines
sentinel strike generate injection # Attack payloadsfrom fastapi import FastAPI
from sentinel.integrations.fastapi import SentinelMiddleware
app = FastAPI()
app.add_middleware(SentinelMiddleware, on_threat="block")| Feature | Description |
|---|---|
| BaseEngine | Unified interface for all 217 Engines |
| Plugin System | pluggy-based hooks for extensions |
| Tiered Pipeline | Parallel execution with early exit |
| SARIF Output | IDE integration for VS Code, IntelliJ |
Kernel-level security for AI infrastructure - written in Pure C.
DragonFlyBSD + Linux eBPF. Production Hardened.
| Phase | Module | Status |
|---|---|---|
| 1.1 | TLS 1.3 mTLS (wolfSSL) | |
| 1.2 | ReDoS Protection | |
| 2.1 | Bloom Filter (MurmurHash3) | |
| 2.2 | SENTINEL Bridge (Brain API) | |
| 3.1 | Kill Switch (Shamir 3-of-5) | |
| 3.2 | Sybil Defense (PoW + Trust) | |
| 3.3 | RCU Buffer (lock-free) | |
| 4.1 | Linux eBPF Port | |
| 4.2 | Web Dashboard (htmx) |
Total: ~9,000 LOC, 11 specs, 42 unit tests
| Metric | Value |
|---|---|
| Hive Modules | 34 |
| Syscall Hooks | 6 (execve, connect, bind, open, fork, setuid) |
| Platform | DragonFlyBSD, FreeBSD, Linux eBPF |
| Security | TLS 1.3, mTLS, Certificate Pinning |
Security wrapper for AI coding assistants and IDE extensions.
| Framework | IDE | Status |
|---|---|---|
| SuperClaude | Claude Code | |
| SuperGemini | Gemini Code | |
| SuperQwen | Qwen | |
| SuperCodex | Codex | |
| Cursor | VS Code fork | |
| Windsurf | Codeium IDE | |
| Continue | Extension | |
| Cody | Sourcegraph |
pip install -e ./superclaudeshieldfrom superclaudeshield import Shield, ShieldMode
shield = Shield(mode=ShieldMode.STRICT)
result = shield.validate_command("/research", {"query": "AI news"})| Threat | Detection |
|---|---|
| Command Injection | Shell, path traversal |
| Prompt Injection | Policy puppetry |
| Agent Hijacking | STAC detection |
| MCP Abuse | SSRF, 8 servers |
SuperClaude Shield Docs | Tests: 27/27
| Metric | Value |
|---|---|
| Brain Engines | 217 |
| Shield LOC | 36,000+ |
| Shield Tests | 103/103 |
| Strike Payloads | 39,000+ |
| Total LOC | 116,000+ |
| OWASP LLM Top 10 | 10/10 |
| OWASP Agentic AI | 10/10 |
π Full Changelog | π Engine Reference
We welcome contributions! See CONTRIBUTING.md.
| Channel | Link |
|---|---|
| chg@live.ru | |
| Telegram | @DmLabincev |
| GitHub | DmitrL-dev |
SENTINEL - Protect your AI. Attack with confidence.
Made with by DmitrL