PaperMtn

@[email protected]
0 Followers
24 Following
2 Posts
Cyber Security professional | Enthusiast of nature, chequered shirts and lists of three | Advocate for DevOps in Security Operations | Sarcasm-as-a-Service
GitHubhttps://github.com/PaperMtn
PaperMtn19h ago

New post: Detecting Misuse with the Claude Compliance API 🔍

Mapping the Compliance API feed to your SIEM gets you IAM and access detections “for free”, but the real AI threats live in the message content: prompt injection, jailbreaks, exfiltration prep, shadow data flow.

So I built a prefilter → LLM judge → SIEM pipeline to catch them, with a working repo + Sigma rules to run offline.

https://www.papermtn.co.uk/detecting-misuse-with-the-claude-compliance-api-the-threat-is-in-the-content/

#infosec #DetectionEngineering #LLMSecurity #AI #blueteam

Detecting Misuse with the Claude Compliance API: The Threat Is in the Content

Detections for Claude Enterprise built on Compliance API content: a prefilter and LLM judge that catch prompt injection, jailbreaks and data exfiltration.

PaperMtn