On the first day of April 2025, I started something—AI Bounty. I’ll spend some time on it every day moving forward, hoping for good results.

I’ll be syncing my research experiences and findings through AIPwn.org as they happen, so feel free to follow along if you’re interested.

Model Security in the LLM Era

Last month, I gave a talk on model security for a big company. Below are a few screenshots from the slides I used at the time. The link to the slides is at the end—feel free to reach out and discuss!

Slides link: LLM时代的模型安全

What AI Bounty Focuses On

I’m still in the learning phase right now and plan to cover all the basics. Currently, very few vendors accept AI vulnerabilities, so the most promising starting point is likely AI infrastructure.

Of course, I’ll also dive into some of the latest topics, like Agent security (which I covered in the slides above) and the recently trending MCP protocol security.

This year is being called the "Year of Agents," so a lot of my effort will go into exploring the expanded attack surface of Agents.

I’ll also be working on some open-source projects related to AI security, which I’ll share via AIPwn.org when the time comes.

Hopefully, in 2025, we all come away with something valuable.

My X: pxiaoer