Find your AI's weaknesses
before attackers do
Bring your own API key and run a professional red team scan against your LLM in minutes. No account. No data stored. Your credentials are used once — then gone.
It tests your LLM deployment— not your website or servers
Nemesis sends adversarial prompts to your large language model using your own API key. It tests how the model responds to real attack techniques — prompt injection, jailbreaks, data extraction, system prompt leakage, and more.
You can test a raw model endpoint, or your configured AI deployment by pasting your system prompt. Nemesis does not scan your website, your infrastructure, or your code — it tests only how your AI layer responds to attacks at the API level.
When McKinsey's AI was breached in March 2026, it wasn't through exotic hacking — an autonomous agent spent $20 and two hours sending crafted prompts and walked out with 46.5 million internal messages. Nemesis checks whether yours would do the same.
Enter your provider and API key
Your credentials stay in browser memory. API calls go directly from your session to your provider — never through Kyora IQ's servers. When the scan ends, the key is discarded.
Choose your attack modules
Select from 16 attack modules: OWASP LLM Top 10, API security, SQL/NoSQL/command injection, toxicity, model identity fingerprinting, agentic chain attacks, and embedding leakage — including specific tests for EchoLeak (CVE-2025-32711) and GitHub Copilot (CVE-2025-53773).
Watch attacks fire in real time
Each test shows the exact prompt sent and the model's response with a live pass/fail result as it executes.
Download your security report
Full HTML or PDF report with severity ratings, OWASP and NIST references, and remediation guidance per finding. Generated in your browser — nothing saved server-side.
Built for anyone deploying or securing AI
If your product, team, or organisation uses a large language model, you have an attack surface that needs testing.
Developers building AI products
Shipping a chatbot, AI assistant, or LLM-powered feature? Test it before your users - or an attacker - do. Paste your system prompt and find out what breaks before it goes live.
Enterprise AI teams
Running an internal AI platform or RAG-powered tool? Verify your system prompt defenses and data handling before your next compliance audit.
Security engineers & red teamers
Add LLM-specific attack coverage to your toolkit. Every test maps to OWASP LLM Top 10 and NIST 800-53 so your findings slot directly into existing security workflows.
Researchers & students
Learn AI attack techniques hands-on with real prompts against real models. Each module has a plain-English explanation, a real-world incident, and remediation guidance.
Compliance & risk teams
Generate audit-ready evidence that your AI systems were tested against OWASP LLM Top 10. Every report includes NIST 800-53 Rev 5 control references.
No account, no cost, no lock-in
Bring your own API key. No sign-up required. No data stored. 16 attack modules, 110+ tests, free to use always.
These attacks already happened
Every test in Nemesis is grounded in a documented real-world exploit. If it's in the test suite, someone already used it against a production system.
An autonomous agent with no credentials breached McKinsey's internal AI in two hours - exposing 46.5M chat messages, 728K client files, 57K user accounts, and gaining write access to system prompts controlling 40,000 consultants. Total cost: $20.
Most RecentHidden injection in a shared document's speaker notes caused Copilot to return the user's private recent emails when they asked for a summary. No click, no download - just a question to an AI assistant.
CVSS 9.3Instructions hidden in a source code file as a disguised markdown image tag caused Copilot to send sensitive data to an attacker-controlled URL. Over 10 million developers were in scope.
CVSS 9.6Built to OWASP & NIST 800-53 Rev 5
We apply the same security standards to this tool that we test for in yours.
Zero credential storage
Your API key lives in browser memory only. It is never written to disk, never sent to Kyora IQ servers, and never logged. It exists for the duration of your scan - nothing more.
No scan persistence
Results are generated and rendered in your browser. When you close the tab, everything is gone unless you downloaded the report yourself.
Authorization-gated testing
Every scan requires explicit written authorization acknowledgment before any request is sent. Like Burp Suite, the responsibility gate is the user declaration - not an endpoint allowlist that blocks legitimate security work.
OWASP Top 10 hardened
CSP headers, input sanitization, XSS prevention, parameterized queries, rate limiting per IP. This application defends against the same vulnerabilities it tests for.
NIST 800-53 Rev 5 aligned
AC-2 account controls, AU-2 metadata-only logging, SC-28 no sensitive data at rest, SI-10 input validation on all fields.
Authorized use gate
Every scan requires explicit acknowledgment of authorization before a single request is sent. This is a legally meaningful declaration, not a checkbox.
Kyora IQ Nemesis is provided strictly for authorized security research, education, and testing of AI systems you own or have explicit written permission to assess. By using this tool, you confirm you hold that authorization. The operators store no credentials, scan results, IP addresses, or personally identifiable information and accept no liability for unauthorized, unlawful, or malicious use. All attack requests are executed using your own API credentials directly from your browser against your designated endpoint only. Use against systems without authorization may violate the Computer Fraud and Abuse Act (CFAA), the UK Computer Misuse Act, GDPR, and equivalent laws in your jurisdiction. You are solely and entirely responsible for ensuring lawful use. Full responsible use policy →
Your model is already a target.
Find out how it holds up.
Before an attacker spends $20 and two hours doing it for you.
No sign-up — No credit card — Nothing leaves your browser unless you download your report