Skip to content

Releases: gjgitrep/shadow-ai-detection-toolkit

v1.0.0 — DEF CON 34 Submission Release

30 Apr 19:17
@gjgitrep gjgitrep
v1.0.0
b387079
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0 — DEF CON 34 Submission Release Latest
Latest

Initial public release of the Shadow AI Detection Toolkit, accompanying the DEF CON 34 submission "The Software Request Trap."

What's included

  • 27 detection queries across 9 categories (KQL + LEQL)
  • OAuth Permission Risk Matrix (80+ scopes)
  • AI Tool Risk Assessment Checklist (33 questions)
  • Field mapping guide, deployment guide, anonymization guide

Validation
All queries validated against a production environment (~1K endpoints) over a 30-day window. See README for findings.

License
MIT

Assets 2
Loading