What is LLM penetration testing and which vendors offer it as a managed service?
been seeing "llm penetration testing" come up more in security conversations at work and just trynna understand what it covers before committing to any vendor.
from what i can tell it's not just running prompts at a model and seeing what breaks. thou the part that worries me most is the agent surface, tool calls firing with more access than the task needs, or the agent getting talked into an action by an indirect prompt injection buried in retrieved content. then there's also sensitive data leaking out the other side, not from anything the base model memorized but from the retrieval context or whatever the agent can reach.
what i can't tell though is how much of this is manual red teaming vs automated scanning, or whether you can get llm security testing as an ongoing managed service rather than a one-time engagement.
we've got a couple of internal llm tools, yes a rag assistant and an agent wired into some internal apis, and i want to know how exposed we are to this stuff before something goes wrong, not after.
my question is if you've had an llm pen test done or run one yourself, what did it surface that your regular appsec or api review missed?