> For the complete documentation index, see [llms.txt](https://x7331.gitbook.io/notes/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://x7331.gitbook.io/notes/postswigger/web-llm-attacks/overview.md).

# Overview

* **Large Language Models (LLMs)** are algorithms that process user inputs (via a prompt) and create a plausible response.&#x20;
* **Prompt Injection** is a common attack against LLMs.
* Attacking an LLM integration is **similar to SSRF**: leveraging a server-side system to launch an otherwise inaccessible target, such as data and APIs.
* **Detection methodology**:
  1. Identify the model's inputs, both direct (via the prompt) and indirect (training data).
  2. Figure out what data and APIs the LLM can access.
  3. Probe this new attack surface for flaws.
