Skip to content
ATR-2026-00080highPrompt Injectiondraft

Encoding-Based Prompt Injection Evasion

Detects prompt injection attempts that use encoding techniques to bypass text-based detection rules. Attackers encode malicious payloads using base64, hex, Unicode escapes, Punycode, or RTL override characters to smuggle instructions past regex-based filters.

嚴重度
high
類別
Prompt Injection
掃描目標
mcp
作者
ATR Community (MiroFish Predicted)

建議回應

block inputalertescalatesnapshot

參考資料

MITRE ATLAS
AML.T0051
在 GitHub 上查看完整 YAML →

更多 Prompt Injection 規則

ATR-2026-00001highDirect Prompt Injection via User InputATR-2026-00002highIndirect Prompt Injection via External ContentATR-2026-00003highJailbreak Attempt DetectionATR-2026-00004criticalSystem Prompt Override AttemptATR-2026-00005mediumMulti-Turn Prompt Injection