Provider table
| Provider | Default Model | Auth | Tool-Use | Env Var |
|---|---|---|---|---|
| Anthropic | claude-sonnet-4-6 | API key | Yes | ANTHROPIC_API_KEY |
| OpenAI | gpt-5.5 | API key | Yes | OPENAI_API_KEY |
| Azure OpenAI | (deployment name) | API key + endpoint | Yes | AZURE_OPENAI_API_KEY |
gemini-3.5-flash | API key | No | GOOGLE_API_KEY | |
| xAI Grok | grok-4.3 | API key | Yes | XAI_API_KEY |
| DeepSeek | deepseek-v4 | API key | Yes | DEEPSEEK_API_KEY |
| Mistral | mistral-large-latest | API key | Yes | MISTRAL_API_KEY |
| Groq | llama-3.3-70b-versatile | API key | Yes | GROQ_API_KEY |
| Together AI | meta-llama/Llama-4-Scout-17B-16E-Instruct | API key | Yes | TOGETHER_API_KEY |
| Perplexity Sonar | sonar-pro | API key | No | PERPLEXITY_API_KEY |
| Cohere | command-r-plus | API key | Yes | COHERE_API_KEY |
| Fireworks AI | accounts/fireworks/.../llama-v3p3-70b-instruct | API key | Yes | FIREWORKS_API_KEY |
| AI21 Labs | jamba-1.6-large | API key | No | AI21_API_KEY |
| Amazon Bedrock | anthropic.claude-3-5-sonnet-20241022-v2:0 | AWS creds | Yes | AWS_ACCESS_KEY_ID+ |
| Ollama | llama4 | None (local) | No | N/A |
| HuggingFace | meta-llama/Llama-4-Scout-17B-16E-Instruct | API token | No | HUGGINGFACE_API_KEY |
| Generic HTTP | (your endpoint) | header / bearer | No | AIBT_HTTP_ENDPOINT+ |
How provider resolution works
ai-blackteam resolves your API key in this order:- CLI flag - passed directly via
--api-key - Environment variable - e.g.
ANTHROPIC_API_KEY - Config file - stored in
~/.ai-blackteam/config.yaml
- CLI flag -
--model claude-opus-4-20250115 - Config file -
providers.anthropic.default_model - Provider default - hardcoded in the provider class
Setting a key via config
~/.ai-blackteam/config.yaml. You can also use environment variable references in the config file:
${VAR_NAME} syntax at load time.
Setting a key via environment
{PROVIDER}_API_KEY for all providers.
Using a different model
Override the default model for any run:Tool-use support
Only Anthropic and OpenAI currently support tool-use attacks (agent exploitation, MCP exploitation, multi-agent attacks). These attacks require the provider’ssend_with_tools method.
If you run a tool-use attack against a provider that doesn’t support it, ai-blackteam will skip it and tell you why.