Red-team strategy
Crescendo Attack
crescendoGradually escalates from innocent topics toward the target. The static transform emits a seed ladder; runAdaptive drives a real multi-round LLM escalation against a live target.
YAML config
evalguard.config.yaml
redteam:
strategies:
- crescendoCLI
bash
# "crescendo" is layered onto attacks during red-team scans.
# List every available encoding/obfuscation strategy:
evalguard list strategiesThreat-model fit
Best for testing if your safety training resists gradual escalation. Adversaries that start innocuous and progressively push toward harmful requests are the most common real-world attack pattern — crescendo simulates that exact dynamic across 5-15 turns.
Pairs well with
Hand-written · 2026-05-21