AI Cyber Range: A Large Language Model Security Offensive and Defensive Exercise Platform Based on OWASP Top 10

AI Cyber Range is an automated cyber range for LLM security research. Based on the OWASP Top10 for LLM Applications security framework, it simulates real AI system vulnerabilities using Docker containerization technology, helping developers and security researchers learn and test the security protection capabilities of large language models in a safe environment. The platform's core philosophy is 'Learn about insecurity in a safe environment', and it supports cross-platform deployment to lower the barrier to learning LLM security.

With the widespread application of LLMs in various industries, their security threats (prompt injection, data leakage, model hijacking, etc.) are becoming increasingly complex and hidden. AI Cyber Range is an automated range specifically designed for LLM security, based on the OWASP Top10 framework, and builds interactive experimental environments through containerization. Unlike traditional tools, it emphasizes 'learning by doing', allowing users to conduct offensive and defensive operations in an isolated environment to deeply understand AI security mechanisms.

The platform adopts a cloud-native architecture and achieves cross-platform compatibility (Windows, macOS, Linux) based on Docker container technology. The hardware requirements are user-friendly: minimum 4GB memory +1GB disk space, and it supports clustered deployment (Docker Swarm/K8s). Deployment is simplified: after downloading the compressed package, run docker-compose up to start in a few minutes, and access http://localhost:8080 via a browser to enter.

The platform strictly follows the OWASP Top10 list of LLM security risks and designs experimental modules for each risk:

• Prompt Injection: Learn to construct inputs to manipulate LLM behavior, bypass restrictions to obtain sensitive information, covering basic to advanced difficulty levels;
• Data Leakage Protection: Simulate inducing models to leak training data or infer training features to understand data privacy protection;
• Model Supply Chain Security: Discuss risks in the lifecycle from pre-training to fine-tuning (malicious implantation, file tampering, third-party library trust issues).

The platform adapts to different user needs:

• Beginners: Friendly web interface + detailed guidance, allowing quick start even without a deep security background; each module includes background, steps, and defense explanations;
• Senior Researchers: Docker architecture supports custom experimental environments and adding test cases, which can be used as a research platform;
• Enterprise Applications: As a standardized tool for AI security training, it helps development teams, product managers, etc., to establish security awareness.

As an open-source project, it relies on community contributions (submitting vulnerability scenarios, improving modules, sharing experiences). In the future, it will expand to multi-modal AI, AI Agent, and other fields, developing into a comprehensive AI security ecosystem to help practitioners maintain technical acumen.

With the rapid development of AI technology, security has become a core design element. AI Cyber Range, through accessible experimental environments, lowers the threshold for learning LLM security, helps individuals improve their skills and enterprises establish security awareness, and is an excellent starting point for addressing new security challenges in the AI era.