About ScanMyPrompt
Your first line of defense against prompt injection attacks. Built on industry standards, designed for everyone.
58
Security Patterns
6
Attack Categories
6
Quality Dimensions
How it works
Copy any prompt you plan to send to an LLM and paste it into the analyzer.
Paste your prompt
Copy any prompt you plan to send to an LLM and paste it into the analyzer.
Instant client-side analysis
58 security patterns across 6 OWASP categories and 6 quality dimensions are evaluated instantly in your browser. Nothing is sent to any server.
Get actionable results
See a risk score, highlighted danger zones, a safe rewrite, quality suggestions, and an auto-improved version of your prompt.
Why this tool?
Prompt injection is OWASP LLM01 — the #1 security risk for large language models. Yet no free, visual tool existed that combines detection, education, and quality analysis in one place. ScanMyPrompt fills that gap.
Who is it for?
Educators teaching AI safety, product teams hardening LLM integrations, indie developers building with APIs, and anyone who wants to write better prompts.
Features
Security Scanning
58 regex patterns across 6 OWASP-aligned categories: system prompt override, jailbreak, data exfiltration, tool abuse, encoding tricks, and social engineering.
Quality Analysis
6 dimensions evaluated: context, specificity, structure, constraints, clarity, and examples — with actionable improvement suggestions.
100% Client-Side
All analysis runs in your browser. Your prompts never leave your machine. Zero network calls for core analysis.
Educational Content
Learn about each attack type with definitions, real examples, and defense strategies. Improve your prompt engineering skills.
Optional LLM Enhancement
Bring your own API key (OpenAI or Anthropic) for deeper AI-powered analysis on top of the heuristic results.
Learn More
Master the art of secure and effective prompt engineering