EC-Council
LLM Pentesting Certified
DojoLM is the open-source red-team platform built and maintained by Blackunicorn— a Tallinn-based cybersecurity boutique founded in 2022, specialised in LLM security testing, AI red-teaming, and EU AI Act & NIS2 compliance.
使命MISSION
Blackunicorn is a boutique — small, senior, EU-based. We help teams ship AI systems that survive prompt injection, jailbreaks, multi-agent abuse, and supply-chain attacks.
Our methodology is grounded in OWASP LLM Top 10, NIST AI RMF, and the EU AI Act. Our tooling is open source because LLM security moves faster than any vendor roadmap — the armoury has to be in the open.
DojoLM is how we arm the teams we don’t directly engage with.
武具THE ARSENAL
DojoLM doesn’t stand alone. Each Blackunicorn tool covers a different phase of the LLM security lifecycle — Learn, Defend, Test, Harden, Operate, Showcase. You can use DojoLM by itself, or chain the whole set.
LLM security testing & CTF platform. 544 patterns, 3,499 fixtures, 9 frameworks.
Intentionally vulnerable LLM for red team training. The dummy model you fire at.
Defensive library with 7 security validators. Drop it in front of any model.
Hardened LLM for security research. The paired defender to Basileak.
Multi-agent operations framework with 81+ security agents.
Blackunicorn Command Centre — secure agentic framework vitrine.
則FOUR PRINCIPLES
Four principles we don’t compromise on. They govern what ships, what stays out, and what earns a release.
DojoLM is MIT licensed, hostable anywhere, and will never gate a core detector behind a commercial tier. The armoury is the product. The armoury is free.
Every pattern we ship was caught landing on a real production model. No synthetic academic corpora. If it's in the library, it's already succeeded against someone.
Regulators already wrote the code. We don't invent a new taxonomy — we crosswalk findings onto ISO, NIST, the AI Act, and six others so the evidence bundle writes itself.
Policy-as-code, signed evidence, Prometheus metrics, audit logs, air-gap friendly. Safe to put on the critical path of a regulated deployment.
系譜LINEAGE
Blackunicorn founded in Tallinn, Estonia to ship security tooling for the LLM era.
DojoLM scaffolded: 139 detection patterns across 14 groups, 89 adversarial fixtures across 12 categories. Scanner + web + BMAD monorepo.
Scanner grows to 505+ patterns across 47 groups; Buki fixture library crosses 1,544 across 30 categories. VEC becomes a first-class attack category.
DojoLM goes public as Alpha V0.1 — first cut of the open-source LLM red-team platform.
共WORK WITH US
Need a human to drive it? Blackunicorn runs LLM pentests, EU AI Act readiness reviews, and agentic security architecture engagements.