Red Teaming Quickstart (No-Code)

Run your first risk assessment in the platform UI — no code required.

Red Teaming Quickstart (No-Code)

Run your first risk assessment in the platform UI — no code required.

Overview

This quickstart walks you through running your first no-code risk assessment on Confident AI. By the end of this guide, you’ll have:

Connected your AI app to Confident AI
Configured your first security framework
Run a risk assessment on your AI application and viewed it on the dashboard

No-code risk assessments let any team member analyze an AI application for security and compliance issues directly in the Confident AI platform.

How it works

Risk assessments follow a simple 4-step process:

Connect your AI application — configure an AI Connection so Confident AI can communicate with your system.
Define a security framework — select or create a framework (e.g., OWASP Top 10 for LLMs, MITRE ATLAS) that contains vulnerabilities and attacks of your choice.
Generate and execute attacks — automatically generate adversarial inputs and send them to your AI application.
Evaluate and assess risk — Confident AI analyzes responses, detects successful exploitations, and generates a structured risk assessment report.

Your AI app can be any application reachable over the internet — Confident AI communicates with it directly through your configured AI Connection.

Here’s a visual representation of the data flow during a risk assessment:

Run your first risk assessment

You’ll need a Confident AI account to follow along. Sign up here if you haven’t already.

Connect Your AI App

First, set up an AI Connection so Confident AI can communicate with your app.

Navigate to Project Settings → AI Connections
Click New AI Connection
Give it a unique identifying name
Configure the endpoint, payload, and output key path
Click Save

Create a Framework

A framework defines the vulnerabilities and attacks that will be used in your assessment.

Navigate to the Frameworks tab
Click Add Framework
Select a template (e.g., OWASP, NIST, MITRE ATLAS) or create a custom framework
Click Save

You can edit vulnerabilities, attacks, and priorities anytime from the framework configuration page.

Run the Assessment

From your framework configuration page, click Run Assessment and select the AI Connection you want to test.

Confident AI will generate adversarial inputs from your framework and send them to your app.

Name your assessments descriptively (e.g., “compliance-test-feb-11”) so they’re easy to find later.

View Results

Once the assessment completes, your report will be available in the risk profile section.

The report includes:

Executive Summary — overall pass rate, vulnerability coverage, and critical issues
Test Cases — every adversarial input and your AI’s response
CVSS Score & Overview — risk score distribution and exploitability breakdown by vulnerability

Done ✅. You’ve run your first no-code risk assessment. You can also download a PDF report with the full breakdown and remediation recommendations.

Next steps

Now that you’ve run your first risk assessment, dive deeper into the platform:

Frameworks & Policies

Customize frameworks, add vulnerabilities, and configure attack priorities for your use case.

Risk Profiles

Understand CVSS scores, vulnerability coverage, and exploitability breakdowns across your assessments.

Overview

This quickstart walks you through running your first no-code risk assessment on Confident AI. By the end of this guide, you’ll have:

Connected your AI app to Confident AI
Configured your first security framework
Run a risk assessment on your AI application and viewed it on the dashboard

No-code risk assessments let any team member analyze an AI application for security and compliance issues directly in the Confident AI platform.

How it works

Risk assessments follow a simple 4-step process:

Connect your AI application — configure an AI Connection so Confident AI can communicate with your system.
Define a security framework — select or create a framework (e.g., OWASP Top 10 for LLMs, MITRE ATLAS) that contains vulnerabilities and attacks of your choice.
Generate and execute attacks — automatically generate adversarial inputs and send them to your AI application.
Evaluate and assess risk — Confident AI analyzes responses, detects successful exploitations, and generates a structured risk assessment report.

Your AI app can be any application reachable over the internet — Confident AI communicates with it directly through your configured AI Connection.

Here’s a visual representation of the data flow during a risk assessment:

Run your first risk assessment

You’ll need a Confident AI account to follow along. Sign up here if you haven’t already.

Connect Your AI App

First, set up an AI Connection so Confident AI can communicate with your app.

Navigate to Project Settings → AI Connections
Click New AI Connection
Give it a unique identifying name
Configure the endpoint, payload, and output key path
Click Save

Create a Framework

A framework defines the vulnerabilities and attacks that will be used in your assessment.

Navigate to the Frameworks tab
Click Add Framework
Select a template (e.g., OWASP, NIST, MITRE ATLAS) or create a custom framework
Click Save

You can edit vulnerabilities, attacks, and priorities anytime from the framework configuration page.

Run the Assessment

From your framework configuration page, click Run Assessment and select the AI Connection you want to test.

Confident AI will generate adversarial inputs from your framework and send them to your app.

Name your assessments descriptively (e.g., “compliance-test-feb-11”) so they’re easy to find later.

View Results

Once the assessment completes, your report will be available in the risk profile section.

The report includes:

Executive Summary — overall pass rate, vulnerability coverage, and critical issues
Test Cases — every adversarial input and your AI’s response
CVSS Score & Overview — risk score distribution and exploitability breakdown by vulnerability

Done ✅. You’ve run your first no-code risk assessment. You can also download a PDF report with the full breakdown and remediation recommendations.

Next steps

Now that you’ve run your first risk assessment, dive deeper into the platform:

Frameworks & Policies

Customize frameworks, add vulnerabilities, and configure attack priorities for your use case.

Risk Profiles

Understand CVSS scores, vulnerability coverage, and exploitability breakdowns across your assessments.