promptmap2

Presented at DEF CON 33 (2025), Aug. 8, 2025, 4 p.m. (45 minutes).

Promptmap2 is a vulnerability scanning tool that automatically tests prompt injection attacks on your custom LLM applications. It analyzes your LLM system prompts, runs them, and sends attack prompts to them. By checking the response, it can determine if the prompt injection was successful or not. It has ready-to-use rules to steal system prompts or distract the LLM application from its main purpose.

Presenters:

• Utku Sen
  Utku is a security researcher known for creating open-source security tools including promptmap, urlhunter, and wholeaked. He presented his various research and tools many times at DEF CON and Black Hat conferences. He was also nominated for Pwnie Awards in the Best Backdoor category in 2016. He works for Bank of America as a senior security professional.

Similar Presentations:

• DEF CON 32 (2024) / Garak Demo
• Objective by the Sea version 5.0 (2022) / Improving macOS Security by Reducing Authentication Prompts
• DEF CON 33 (2025) / MPIT - Matrix Prompt Injection Tool and ShinoLLMApps Demo