RAXE Labs

Security research

Original AI security research from the team that builds RAXE. Every vulnerability we find becomes a detection signature. Every pattern we document makes the platform stronger.

Security Advisories Threat Intelligence
Research Mission
Discover AI threats before attackers exploit them. Publish findings openly. Turn every discovery into enforceable protection that ships automatically to RAXE Gateway and Sensor.
Published Research

Explore our findings

Monthly

Threat Intelligence Reports

Monthly data-driven analysis of the AI threat landscape. Covers attack volume trends, emerging techniques, threat family distribution, and actionable recommendations for security teams and developers.

  • Quantitative analysis from real-world telemetry
  • Month-over-month trend tracking
  • MITRE ATLAS technique mapping
  • Audience-specific recommendations
View latest report →
38 Published

Security Advisories

CVE-tracked vulnerability disclosures for AI frameworks, agents, and model serving infrastructure. Each advisory includes technical analysis, reproduction steps, detection signatures, and mitigation guidance.

  • CVE-assigned disclosures
  • YAML detection signatures included
  • CVSS scoring and severity classification
  • Coordinated disclosure with vendors
Browse advisories →
📡 Bi-weekly

Research Radar

Bi-weekly digest translating arXiv AI security papers into practitioner summaries. Each paper rated across 4 dimensions and classified as act now, watch, or horizon.

Browse radar issues →
Framework

Cold Validation

Independent AI change assurance for CISOs and engineering leaders. Separation of duties, release governance, structured audit evidence, and human risk acceptance before anything ships.

Learn about Cold Validation →
4 Research Streams

Where we focus

Research organized into four streams, each targeting a distinct category of AI security threats.

S1

Adversarial ML

Jailbreaking, prompt injection, model behaviour manipulation

S2

Agent Security

Tool-call abuse, MCP exploits, agent manipulation

S3

Supply Chain

Framework vulnerabilities, model registry threats

S4

Prompt Injection

Injection taxonomy, encoding tricks, evasion patterns

Open Detection Content

515+ YAML-based signatures

Every research finding produces detection signatures. Open, auditable, mapped to MITRE ATLAS, and continuously updated.

515+
Detection Signatures
38
Published Advisories
Monthly
Threat Reports
Coming Soon

Upcoming publications

Q2 2026

MCP Server Attack Surface Analysis

Comprehensive analysis of Model Context Protocol server vulnerabilities, including tool-call injection, permission escalation, and cross-server data exfiltration.

Q2 2026

AI Agent Exploitation Taxonomy

A systematic classification of attack techniques targeting autonomous AI agents, including multi-turn manipulation, sandbox escapes, and inter-agent trust exploitation.

Q3 2026

Prompt Injection Evasion Benchmark

Benchmarking prompt injection detection systems against adversarial evasion techniques, including encoding, obfuscation, and multi-language attacks.

Q3 2026

LLM Supply Chain Risk Report

Analysis of dependency risks in the AI/ML ecosystem, covering model registries, framework vulnerabilities, and training pipeline integrity.

Stay ahead of AI threats

Our research feeds directly into RAXE platform detections. Deploy the platform to turn every finding into automated protection.

Request a Demo Talk to an Engineer
RAXE Labs → RAXE Intelligence →