brycewang-stanford/ai-security-papers-guide
skills/43-wentorai-research-plugins/skills/domains/cs/ai-security-papers-guide/SKILL.md
AI security papers from top-4 security conferences
$ install --global
skillsauthnpx skillsauth add brycewang-stanford/Awesome-Agent-Skills-for-Empirical-Research ai-security-papers-guideInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 28, 2026, 5:12 AM349.8s1 file scanned
SKILL.md
- name:
- ai-security-papers-guide
- description:
- AI security papers from top-4 security conferences
- emoji:
- 🛡️
- category:
- domains
- subcategory:
- cs
- keywords:
- ["AI security", "adversarial ML", "model attacks", "S&P", "CCS", "USENIX", "NDSS"]
- source:
- https://github.com/Zhou-Zi7/Awesome-AI-Security-BIG4
AI Security Papers Guide (BIG4 Venues)
Overview
A curated collection of AI security papers from the top-4 security conferences: IEEE S&P, ACM CCS, USENIX Security, and NDSS. Covers adversarial attacks, model stealing, data poisoning, privacy attacks, deepfake detection, and LLM security. Organized by year and venue, focusing exclusively on peer-reviewed work from these prestigious venues.
Venues
| Venue | Full Name | Focus | |-------|-----------|-------| | S&P | IEEE Symposium on Security and Privacy | Broad security + privacy | | CCS | ACM Conference on Computer and Communications Security | Systems security | | USENIX | USENIX Security Symposium | Systems + network security | | NDSS | Network and Distributed System Security | Network security |
Topic Categories
AI Security (BIG4)
├── Adversarial ML
│ ├── Evasion attacks (adversarial examples)
│ ├── Poisoning attacks (backdoors, trojans)
│ ├── Model stealing (extraction, distillation)
│ └── Defenses (certified robustness, detection)
├── Privacy Attacks
│ ├── Membership inference
│ ├── Model inversion
│ ├── Attribute inference
│ └── Training data extraction
├── LLM Security
│ ├── Prompt injection
│ ├── Jailbreaking
│ ├── Data leakage
│ └── Alignment attacks
├── Deepfakes
│ ├── Generation methods
│ ├── Detection techniques
│ └── Watermarking
└── Federated Learning Security
├── Byzantine attacks
├── Gradient leakage
└── Secure aggregation
Key Papers by Year
# Recent highlights
papers_2024_2025 = [
{"title": "Not What You've Signed Up For: "
"Compromising Real-World LLM-Integrated Applications",
"venue": "S&P 2024", "topic": "LLM security"},
{"title": "Prompt Stealing Attacks Against "
"Text-to-Image Generation Models",
"venue": "S&P 2024", "topic": "Prompt extraction"},
{"title": "Backdoor Attacks on Language Models",
"venue": "CCS 2024", "topic": "NLP backdoors"},
{"title": "Membership Inference in LLMs",
"venue": "USENIX 2024", "topic": "Privacy"},
]
for p in papers_2024_2025:
print(f"[{p['venue']}] {p['title']}")
print(f" Topic: {p['topic']}")
Research Trends
### Emerging Areas (2024-2025)
1. **LLM security** — Jailbreaking, prompt injection, agent attacks
2. **Supply chain attacks** — Poisoned models, malicious packages
3. **Multi-modal attacks** — Cross-modal adversarial examples
4. **Agent security** — Attacks on LLM-based autonomous systems
5. **Watermarking** — LLM output detection, IP protection
6. **Unlearning** — Machine unlearning verification and attacks
Use Cases
- Security research: Find state-of-the-art attack/defense methods
- Threat modeling: Understand AI system vulnerabilities
- Literature review: Systematic coverage of BIG4 AI security
- Course material: Graduate-level AI security curriculum
- Red teaming: Learn evaluation techniques for AI systems
References
- Awesome-AI-Security-BIG4
- IEEE S&P
- ACM CCS
Related Skills
brycewang-stanford/thematic-analysis
development
VerifiedTrustedCommunity
Conduct rigorous thematic analysis (TA) of qualitative data following Braun and Clarke's (2006) six-phase framework. Use whenever the user mentions 'thematic analysis', 'TA', 'Braun and Clarke', 'qualitative coding', 'identifying themes', or asks for help analysing interviews, focus groups, open-ended survey responses, or transcripts to identify patterns. Also trigger for questions about inductive vs theoretical coding, semantic vs latent themes, essentialist vs constructionist epistemology, building a thematic map, or writing up a qualitative findings section. Covers all six phases, the four upfront analytic decisions, the 15-point quality checklist, and the five common pitfalls. Produces a Word document write-up and an annotated thematic map. Does NOT cover IPA, grounded theory, discourse analysis, conversation analysis, or narrative analysis — use a different method for those.
1,685SKILL.mdUpdated Jun 5, 2026
brycewang-stanford/slr-prisma
development
VerifiedTrustedCommunity
Guide users through writing a systematic literature review (SLR) following the PRISMA 2020 framework. Use this skill whenever the user mentions 'systematic review', 'systematic literature review', 'SLR', 'PRISMA', 'PRISMA 2020', 'PRISMA flow diagram', 'PRISMA checklist', or asks for help writing, structuring, or auditing a literature review that follows reporting guidelines. Also trigger when the user asks about inclusion/exclusion criteria for a review, search strategies for databases like Scopus/WoS/PubMed, study selection processes, risk of bias assessment, or narrative synthesis for a review paper. This skill covers the full PRISMA 2020 checklist (27 items), produces a Word document manuscript in strict journal article format, generates an annotated PRISMA flow diagram, and enforces APA 7th Edition referencing throughout. It does NOT cover meta-analysis or statistical pooling. By Chuah Kee Man.
1,685SKILL.mdUpdated Jun 5, 2026
brycewang-stanford/running-placebo-analysis
testing
VerifiedTrustedCommunity
Performs placebo-in-time sensitivity analysis with hierarchical null model and optional Bayesian assurance. Use when checking model robustness, verifying lack of pre-intervention effects, or estimating study power.
1,685SKILL.mdUpdated Jun 5, 2026
brycewang-stanford/running-causalpy-experiments
data-ai
VerifiedTrustedCommunity
Fit, summarize, plot, and interpret a chosen CausalPy experiment. Use after the causal method has been selected, including when configuring PyMC/sklearn models and scale-aware custom priors.
1,685SKILL.mdUpdated Jun 5, 2026