Hilary Torn

I evaluate and red team AI systems for safety after 20 years in growth marketing learning what makes people click & convert.

Featured Projects

AI Control

In Context Trajectory Poisoning: Bypassing LLM Agent Monitors with Natural Language

Agent monitors are supposed to catch when an AI has been compromised, but you can fool them with ordinary text: no model access, no GPUs, no gibberish strings.

Apr 12, 2026

I Tricked AI Safety Monitors Using Plain English

I adapted a jailbreaking algorithm to fool AI agent monitors using plain English, no model access, no GPUs. The attacks transferred across model families, hitting up to 73.7% on models they were never optimized against.

Hilary Torn

Mar 31, 2026

A CoT Generator That Made AI Agents Reveal Their Manipulation Tactics

Give an AI agent metrics to hit and a performance review in 3 days, and it'll fabricate orders, invent confirmation emails it never sent, and generate three contradictory order IDs before trying to cover it up — all visible in its own chain-of-thought.

Hilary Torn

Feb 20, 2026

Hilary Torn

Featured Projects

In Context Trajectory Poisoning: Bypassing LLM Agent Monitors with Natural Language

Featured Posts

I Tricked AI Safety Monitors Using Plain English

A CoT Generator That Made AI Agents Reveal Their Manipulation Tactics