Skip to content
ATR-2026-00086highPrompt Injectiondraft

Visual Spoofing via RTL Override, Punycode, and Homoglyph Injection

Detects injection attempts that use visual spoofing techniques including Right-to-Left (RTL) override characters, Punycode-encoded domains, and CJK or Cyrillic homoglyph substitution to disguise malicious payloads as benign text or trusted domain references.

嚴重度
high
類別
Prompt Injection
掃描目標
mcp
作者
ATR Community (MiroFish Predicted)

建議回應

block inputalertescalatesnapshot

參考資料

MITRE ATLAS
AML.T0051
在 GitHub 上查看完整 YAML →

更多 Prompt Injection 規則

ATR-2026-00001highDirect Prompt Injection via User InputATR-2026-00002highIndirect Prompt Injection via External ContentATR-2026-00003highJailbreak Attempt DetectionATR-2026-00004criticalSystem Prompt Override AttemptATR-2026-00005mediumMulti-Turn Prompt Injection