Security Research
Insights & Intelligence
Deep dives into AI/LLM security, EU compliance, penetration testing, OSINT, and agentic AI from our research team.
RSS FeedFeatured
Editor's Picks
Agentic AI
Running 25 AI Agents in Production: Introducing BUCC
Several months, 390+ endpoints, 130 tables, and a production-grade operations platform for a 25-agent AI workforce. A builder's journal on what multi-agent AI actually looks like when it's running, not demoing.
16 min read
Red Team
Red Teaming AI Systems: Beyond Traditional Pentesting
Red teaming AI systems demands a fundamentally different mindset from classical network or application testing. Here is how to build an effective AI red team program.
7 min read
Compliance & Regulation
EU AI Act Risk Classification: What You Need to Know
The EU AI Act introduces a tiered risk framework that will shape how AI systems are built, deployed, and audited across Europe. Here is what practitioners need to understand.
6 min read
Latest
All Articles
Agentic AI
Ultra Instinct: How BUCC Agents Train Themselves
A closed-loop self-improvement pipeline for a 25-agent fleet: harvest, score, mutate, train, deploy. Local hardware, QLoRA, one-click rollback. A builder's journal on continuous agent improvement in production.
6 min read
Agentic AI
Building a 7-Dimension ACL Framework for 25 AI Agents
Traditional ACL asks who can access what. Agent ACL has to answer across seven dimensions at once. Here's the 175-element matrix we built for BUCC and why default-deny is the only model that survives contact with production.
8 min read
Agentic AI
Catching AI Hallucinations: A Five-Stage Quality Pipeline
Hallucinations aren't an LLM problem, they're a quality-control problem. Here's the 5-stage pipeline that catches, classifies, and contains bad outputs before they reach customers, and the decision rationale behind each stage.
15 min read
Agentic AI
Three-Layer LLM Routing: Cost, Privacy, and Performance Without Trade-offs
L1 local Ollama, L2 subscription APIs, L3 pay-per-token frontier models. The routing layer decides which tier handles each call based on sensitivity, complexity, and cost. Here's the architecture that keeps 25 agents running without burning through a cloud bill.
16 min read
Agentic AI
Provisioning AI Agents Like Infrastructure: An 8-Step Pipeline
Production agents aren't spun up, they're provisioned. Persona, scope, tools, memory, permissions, briefing, first task, review. Here's the lifecycle model that replaces 'deploy and pray' with something you can actually audit.
17 min read
Agentic AI
The Data Sanitization Proxy: Fail-Closed Security for Every LLM Call
Every outbound LLM call is a data egress event. The DSP sits between the fleet and every provider, classifies the payload, and routes sensitive data to L1-local models only. Here's how it works and why default-deny is the only posture that survives production.
15 min read
Agentic AI
Persistent Agent Memory: A Three-Tier Architecture
Agents that forget everything between turns can't coordinate, can't learn, and can't improve. Here's the 3-tier memory model, global, agent-specific, session, and how we kept it fast, auditable, and privacy-safe.
13 min read
Agentic AI
Governance, Not Guardrails: Circuit Breakers for 25 AI Agents
Guardrails are filters. Governance is an architecture. Here's the 5-circuit-breaker system and 3-tier action classification we designed first, then built BUCC around, not bolted on after.
20 min read
Agentic AI
Agentic AI in the Enterprise: Building Secure Multi-Agent Systems with Custom Models
Autonomous AI agents are the next force multiplier, and the next attack surface. This guide covers how to design, train, and deploy secure multi-agent systems for enterprise operations.
7 min read
OSINT
OSINT for Cybersecurity: A Practical Guide
Open-source intelligence is one of the most powerful and underutilized tools in a security practitioner's toolkit. This guide covers methodology, tools, and operational security.
6 min read
AI & LLM Security
Introduction to LLM Penetration Testing
A practical primer on how to approach security assessments of large language models, from threat modeling to prompt injection and beyond.
5 min read