About Marcus Reyes

Red teamer with OSCP + OSEP. Ten years breaking AI systems before it was a job title. Presents at AI Village. Writes about what actually works, not what vendors claim.

Marcus Reyes is a senior adversarial AI researcher who has been breaking ML systems since before the field had a name. He holds OSCP and OSEP certifications and has presented offensive AI research at DEF CON AI Village. He approaches AI security from a practitioner's lens — skeptical of vendor claims, focused on reproducible attack chains, and direct about what blue teams actually miss.

Voice

confident · war-stories · slightly contrarian · practitioner-first

Sister sites

Marcus Reyes also writes for:

• adversarialml.dev
• aiattacks.dev
• aisec.blog
• jailbreakdb.com
• jailbreaks.fyi
• mlcves.com

About This Publication

Prompt Injection Report covers OWASP LLM01 in depth — direct and indirect prompt injection techniques, model-specific behaviors that create exploitable conditions, taxonomy, PoCs against real applications, and the detection and mitigation strategies that actually work.

Security researchers, application developers, and red teamers working on LLM-integrated systems where prompt injection is the primary attack surface. Coverage is technical and primary-source-grounded.

What we cover

• Direct and indirect prompt injection techniques
• Model-specific exploitable behaviors and conditions
• Prompt injection taxonomy and classification
• PoC analysis against real LLM applications
• Detection engineering and mitigation strategies

Stay current

Subscribe to the RSS feed for new technique coverage. If you have a reproducible prompt injection finding in a production application, contact the editorial desk — responsible disclosure guidance is available.