Frameworks for securing agentic systems

Overview

Framework Focus Status
OWASP Agentic Top 10 Vulnerability risks Released Dec 2025
NIST AI RMF Risk management v2.0 + GenAI Profile
MAESTRO Defense layers Released Feb 2025
MITRE ATLAS Threat taxonomy Active

OWASP Top 10 for Agentic Applications (2026)

"The Benchmark for Agentic Security"
Released December 10, 2025
Contributors 100+ researchers
Review Board NIST, EC, Alan Turing Institute

Official Resources

The 10 Risks

  1. Agent Goal Hijacking — Manipulating decision-making
  2. Tool Misuse & Exploitation — Unsafe tool actions
  3. Identity & Privilege Abuse — Weak auth exploitation
  4. Sensitive Info Disclosure — Data leakage
  5. Data Poisoning — Corrupted knowledge sources