PKU-ML/PAT external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PKU-ML/PAT

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PKU-ML/PAT)

Close

PKU-ML / PATView on GitHubMore

• External links
• Readme badge

Code for NeurIPS 2024 Paper "Fight Back Against Jailbreaking via Prompt Adversarial Tuning"

☆22May 6, 2025Updated 9 months ago

Alternatives and similar repositories for PAT

Users that are interested in PAT are comparing it to the libraries listed below

• rain152 / PAT

  View on GitHub
  [NeurIPS 2024] Fight Back Against Jailbreaking via Prompt Adversarial Tuning
  ☆11Oct 29, 2024Updated last year
• jiah-li / magic

  View on GitHub
  The repo for paper: Exploiting the Index Gradients for Optimization-Based Jailbreaking on Large Language Models.
  ☆13Dec 16, 2024Updated last year
• PKU-ML / Generalist

  View on GitHub
  CVPR 2023 generalist
  ☆16Oct 25, 2023Updated 2 years ago
• sail-sg / I-FSJ

  View on GitHub
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆65Jan 11, 2025Updated last year
• weizeming / momentum-attack-llm

  View on GitHub
  ☆23Jan 17, 2025Updated last year
• ErxinYu / CoSafe-Dataset

  View on GitHub
  ☆11Nov 12, 2024Updated last year
• Huang-yihao / Personalization-based_backdoor

  View on GitHub
  ☆10Dec 18, 2024Updated last year
• AI45Lab / ActorAttack

  View on GitHub
  ☆121Feb 3, 2025Updated last year
• zhaoyiran924 / Probe-Sampling

  View on GitHub
  [NeurIPS 2024] Accelerating Greedy Coordinate Gradient and General Prompt Optimization via Probe Sampling
  ☆34Nov 8, 2024Updated last year
• Auraithm / LLADA_pretraining

  View on GitHub
  ☆31Aug 18, 2025Updated 6 months ago
• lapisrocks / rpo

  View on GitHub
  Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"
  ☆61Aug 8, 2024Updated last year
• facebookresearch / jailbreak-objectives

  View on GitHub
  Code and data to go with the Zhu et al. paper "An Objective for Nuanced LLM Jailbreaks"
  ☆36Dec 18, 2024Updated last year
• wzekai99 / DM-Improves-AT

  View on GitHub
  Code for the paper "Better Diffusion Models Further Improve Adversarial Training" (ICML 2023)
  ☆146Jul 31, 2023Updated 2 years ago
• TeamPigeonLab / CS-DJ

  View on GitHub
  Accept by CVPR 2025 (highlight)
  ☆22Jun 8, 2025Updated 8 months ago
• PKU-ML / AdvNotRealFeatures

  View on GitHub
  Official Code for reproductivity of the NeurIPS 2023 paper: Adversarial Examples Are Not Real Features
  ☆16Jun 27, 2024Updated last year
• YancyKahn / CoA

  View on GitHub
  Chain of Attack: a Semantic-Driven Contextual Multi-Turn attacker for LLM
  ☆39Jan 17, 2025Updated last year
• kriti-hippo / red_queen

  View on GitHub
  Red Queen Dataset and data generation template
  ☆26Dec 26, 2025Updated 2 months ago
• AISG-Technology-Team / GCSS-Track-1A-Submission-Guide

  View on GitHub
  Submission Guide + Discussion Board for AI Singapore Global Challenge for Safe and Secure LLMs (Track 1A).
  ☆16Jul 4, 2024Updated last year
• YisenWang / dynamic_adv_training

  View on GitHub
  Code for ICML2019 Paper "On the Convergence and Robustness of Adversarial Training"
  ☆34Apr 28, 2020Updated 5 years ago
• PKU-ML / DYNACL

  View on GitHub
  [ICLR 2023] Official repository of the paper "Rethinking the Effect of Data Augmentation in Adversarial Contrastive Learning"
  ☆18Feb 19, 2023Updated 3 years ago
• kztakemoto / simbaja

  View on GitHub
  All in How You Ask for It: Simple Black-Box Method for Jailbreak Attacks
  ☆18Apr 24, 2024Updated last year
• whj363636 / Self-Ensemble-Adversarial-Training

  View on GitHub
  SEAT
  ☆21Oct 10, 2023Updated 2 years ago
• uw-nsl / safechain

  View on GitHub
  [ACL 25] SafeChain: Safety of Language Models with Long Chain-of-Thought Reasoning Capabilities
  ☆28Apr 2, 2025Updated 11 months ago
• Yu-Fangxu / COLD-Attack

  View on GitHub
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆176Dec 18, 2024Updated last year
• PKU-ML / CFA

  View on GitHub
  ☆20Mar 14, 2025Updated 11 months ago
• boyiwei / alignment-attribution-code

  View on GitHub
  [ICML 2024] Assessing the Brittleness of Safety Alignment via Pruning and Low-Rank Modifications
  ☆89Mar 30, 2025Updated 11 months ago
• yuplin2333 / representation-space-jailbreak

  View on GitHub
  Code repo of our paper Towards Understanding Jailbreak Attacks in LLMs: A Representation Space Analysis (https://arxiv.org/abs/2406.10794…
  ☆23Jul 26, 2024Updated last year
• AI45Lab / CodeAttack

  View on GitHub
  [ACL 2024] CodeAttack: Revealing Safety Generalization Challenges of Large Language Models via Code Completion
  ☆58Oct 1, 2025Updated 5 months ago
• UCSC-VLAA / AttnGCG-attack

  View on GitHub
  ☆24Jun 17, 2025Updated 8 months ago
• dedeswim / vits-robustness-torch

  View on GitHub
  Code for the paper "A Light Recipe to Train Robust Vision Transformers" [SaTML 2023]
  ☆54Feb 6, 2023Updated 3 years ago
• TreeLLi / APT

  View on GitHub
  One Prompt Word is Enough to Boost Adversarial Robustness for Pre-trained Vision-Language Models
  ☆58Dec 20, 2024Updated last year
• NY1024 / BAP-Jailbreak-Vision-Language-Models-via-Bi-Modal-Adversarial-Prompt

  View on GitHub
  ☆59Jun 5, 2024Updated last year
• LLM-DRA / DRA

  View on GitHub
  [USENIX Security'24] Official repository of "Making Them Ask and Answer: Jailbreaking Large Language Models in Few Queries via Disguise a…
  ☆112Oct 11, 2024Updated last year
• RylanSchaeffer / AstraFellowship-When-Do-VLM-Image-Jailbreaks-Transfer

  View on GitHub
  Code for ICLR 2025 Failures to Find Transferable Image Jailbreaks Between Vision-Language Models
  ☆37Jun 1, 2025Updated 9 months ago
• snu-mllab / DiscreteBlockBayesAttack

  View on GitHub
  Official PyTorch implementation of "Query-Efficient and Scalable Black-Box Adversarial Attacks on Discrete Sequential Data via Bayesian O…
  ☆25Sep 26, 2023Updated 2 years ago
• unbiarirang / Fixed-Input-Parameterization

  View on GitHub
  This repository contains the official code for the paper: "Prompt Injection: Parameterization of Fixed Inputs"
  ☆32Sep 13, 2024Updated last year
• YihanWang617 / llm-jailbreaking-defense

  View on GitHub
  A lightweight library for large laguage model (LLM) jailbreaking defense.
  ☆61Sep 11, 2025Updated 5 months ago
• thunxxx / MLLM-Jailbreak-evaluation-MMJ-Bench

  View on GitHub
  ☆72Mar 30, 2025Updated 11 months ago
• SheltonLiu-N / Universal-Prompt-Injection

  View on GitHub
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆69Oct 23, 2024Updated last year