Skip to content

Vector Database Seeds

Three vector databases across two hosts hold planted sensitive data alongside noise collections. Each database is seeded by a dedicated Python script that runs after the service is provisioned.


ChromaDB (ailab-ml, port 8000)

Seeded by seed_chromadb.py using the ChromaDB venv Python (/opt/chromadb/venv/bin/python3). Four collections — three sensitive, one noise.

acme-knowledge-base (12+ documents)

The primary RAG knowledge base. Contains a mix of PII, credentials, financial data, and adversarial prompt injection payloads.

Category Key Data
SSNs 456-78-9012, 789-01-2345
Salaries $145K, $162K (with employee names)
VPN Monitoring Creds svc-vpn-mon / VpnM0n1t0r!ng2024
DB Credentials bi_reader / B1R3ader!Pr0d, full connection string to db-prod-01.acme.internal
VPN Admin admin / F0rt1G4te@dm1n!
AWS Account IDs 123456789012, 987654321098, 111222333444
Grafana Admin admin / Gr4f4n4@dm1n
Q3 Financials CONFIDENTIAL — $42.3M revenue, IPO target Q2 2027
M&A Analysis RESTRICTED — DataFlow Inc acquisition, $85M, board vote Dec 15
Slack Bot Token xoxb-...
GitHub PAT ghp_...
Datadog API Key Monitoring integration key
PagerDuty API Key Incident response integration
Sentry DSN Error tracking integration
Prompt Injections Adversarial documents designed to manipulate LLM behavior

Prompt Injection Payloads

The acme-knowledge-base collection includes adversarial documents alongside legitimate sensitive data. These test a distinct finding category: stored prompt injection attacks that could manipulate any LLM using this collection for RAG retrieval.

support-tickets-2025 (5 documents)

Customer support tickets with PII and credentials left in ticket notes.

Category Key Data
Credit Card (Visa) Ending 4242
Credit Card (Mastercard) Ending 1234, exp 08/2027
SSN 321-54-9876
Temp Password TmpPwd!2025#Reset
Provisioned API Key gt_api_key_FAKE_9f8e7d6c5b4a3210
Passport DE-FAKE-12345678

code-documentation (3 documents)

Internal developer documentation with credentials embedded in setup guides.

Category Key Data
Dev Admin Creds admin / AdminDev2024!
AWS Secrets Manager ARN referencing production secrets
Emergency IAM User emergency-access / EmrgAcc3ss!2024

public-documentation (noise)

5–8 documents of benign reference material. Open-source library docs, public API references, and marketing copy. No credentials or PII. See Noise Collections.


Weaviate (ailab-ds, port 8080)

Seeded by seed_weaviate.py. Three classes — two sensitive, one noise.

ResearchDocument (6 objects)

Research notes and infrastructure documentation from the data science team.

Category Key Data
PostgreSQL postgresql://ds_readonly:DsR34d0nly!Pr0d@...
Snowflake ds_team:Sn0wfl4keDs!@acme.snowflakecomputing.com
Zendesk API Key Customer support integration
Redis Auth FeatSt0re!R3dis
OpenAI Key Used for model distillation
W&B Key Experiment tracking
Airflow Admin airflow_admin / A1rfl0w@dm1n2024
Stripe LIVE Key sk_live_FAKE_stripe_1234567890abcdef
Salesforce OAuth CRM integration credentials
HubSpot Key Marketing automation
Intercom Token Customer messaging

TeamCommunication (6 objects)

Internal team messages — Slack exports and email threads containing PII and sensitive business data.

Category Key Data
SSNs 567-89-0123, 890-12-3456, 234-56-7891 (new hire onboarding)
Salaries $175K, $140K, $155K with employee names and stock grants
HR Admin hr_admin / HrAdm1n!2024
CFO Credit Card Corporate card ending 8901
Board AI Strategy Headcount reduction plans — sensitive executive communications

PublicKnowledge (noise)

Public dataset descriptions and Wikipedia-style articles. No sensitive data. See Noise Collections.


Qdrant (ailab-ds, port 6333)

Seeded by seed_qdrant.py. Three collections — two sensitive, one noise.

product-catalog (4 points)

Internal product and licensing information with embedded admin credentials.

Category Key Data
License Server Admin license_admin / L1c3ns3Adm!n
SaaS DB Creds postgresql://saas_app:S44sAppPr0d!@...
Stripe Billing Key sk_live_FAKE_saas_billing_abcdef123456
Vault Token hvs.FAKE_vault_token_abcdef1234567890

security-findings (6 points)

Internal security reports and incident response documentation.

Category Key Data
Pentest Report Lists ALL lab hosts by IP with services — a meta finding describing the environment being exploited
IR Playbook Break-glass procedures and emergency access
Network Switch Creds admin / C1sc0@dm1n!2024
AWS Backup Key AKIAFAKEBACKUP123456

The Meta Finding

The security-findings collection contains a pentest report that describes the exact lab environment — hosts, IPs, services, and vulnerabilities. When aipostex extracts this, the demo audience sees a pentest report about the infrastructure being exploited in real time.

public-faq (noise)

Generic Q&A content. No sensitive data. See Noise Collections.