Alternatives and similar repositories for carving

Users that are interested in carving are comparing it to the libraries listed below

• chawins / pal
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆57Updated last year
• ejones313 / auditing-llms
  ☆60Updated 2 years ago
• aengusl / latent-adversarial-training
  ☆47Updated last year
• ethz-spylab / rlhf_trojan_competition
  Finding trojans in aligned LLMs. Official repository for the competition hosted at SaTML 2024.
  ☆116Updated last year
• azshue / AutoPoison
  The official repository of the paper "On the Exploitability of Instruction Tuning".
  ☆68Updated last year
• XuandongZhao / weak-to-strong
  [ICML 2025] Weak-to-Strong Jailbreaking on Large Language Models
  ☆92Updated 8 months ago
• max-andr / adversarial-random-search-gpt4
  Adversarial Attacks on GPT-4 via Simple Random Search [Dec 2023]
  ☆43Updated last year
• rishub-tamirisa / tamper-resistance
  [ICLR 2025] Official Repository for "Tamper-Resistant Safeguards for Open-Weight LLMs"
  ☆66Updated 7 months ago
• sail-sg / I-FSJ
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆65Updated last year
• paul-rottger / xstest
  Röttger et al. (NAACL 2024): "XSTest: A Test Suite for Identifying Exaggerated Safety Behaviours in Large Language Models"
  ☆123Updated 11 months ago
• GraySwanAI / circuit-breakers
  Improving Alignment and Robustness with Circuit Breakers
  ☆255Updated last year
• SchwinnL / circuit-breakers-eval
  Independent robustness evaluation of Improving Alignment and Robustness with Short Circuiting
  ☆18Updated 9 months ago
• facebookresearch / SecAlign
  Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"
  ☆83Updated 6 months ago
• andyzoujm / breaking-llama-guard
  Code to break Llama Guard
  ☆32Updated 2 years ago
• facebookresearch / advprompter
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆174Updated last year
• Confirm-Solutions / flrt
  Fluent student-teacher redteaming
  ☆23Updated last year
• dsbowen / strong_reject
  ☆122Updated 6 months ago
• centerforaisafety / tdc2023-starter-kit
  This is the starter kit for the Trojan Detection Challenge 2023 (LLM Edition), a NeurIPS 2023 competition.
  ☆90Updated last year
• Princeton-SysML / Jailbreak_LLM
  ☆192Updated 2 years ago
• Yu-Fangxu / COLD-Attack
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆176Updated last year
• SafeAILab / RAIN
  [ICLR'24] RAIN: Your Language Models Can Align Themselves without Finetuning
  ☆98Updated last year
• centerforaisafety / wmdp
  WMDP is a LLM proxy benchmark for hazardous knowledge in bio, cyber, and chemical security. We also release code for RMU, an unlearning m…
  ☆157Updated 8 months ago
• locuslab / acr-memorization
  ☆37Updated last year
• arobey1 / smooth-llm
  ☆119Updated 2 years ago
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆83Updated last year
• tml-epfl / llm-past-tense
  Does Refusal Training in LLMs Generalize to the Past Tense? [ICLR 2025]
  ☆77Updated last year
• ethz-spylab / rlhf-poisoning
  Code for paper "Universal Jailbreak Backdoors from Poisoned Human Feedback"
  ☆66Updated last year
• uw-nsl / SafeDecoding
  Official Repository for ACL 2024 Paper SafeDecoding: Defending against Jailbreak Attacks via Safety-Aware Decoding
  ☆153Updated last year
• weizeming / momentum-attack-llm
  ☆23Updated last year
• poloclub / llm-landscape
  NeurIPS'24 - LLM Safety Landscape
  ☆38Updated 3 months ago