RICommunity/TAP external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RICommunity/TAP

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RICommunity/TAP)

Close

RICommunity / TAPView on GitHubMore

• External links
• Readme badge

TAP: An automated jailbreaking method for black-box LLMs

☆221Dec 10, 2024Updated last year

Alternatives and similar repositories for TAP

Users that are interested in TAP are comparing it to the libraries listed below

• patrickrchao / JailbreakingLLMs

  View on GitHub
  ☆698Jul 2, 2025Updated 7 months ago
• chawins / pal

  View on GitHub
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆57Aug 17, 2024Updated last year
• usail-hkust / JailTrickBench

  View on GitHub
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆163Nov 30, 2024Updated last year
• facebookresearch / advprompter

  View on GitHub
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆178May 6, 2024Updated last year
• SheltonLiu-N / AutoDAN

  View on GitHub
  [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language M…
  ☆430Jan 22, 2025Updated last year
• tml-epfl / llm-adaptive-attacks

  View on GitHub
  Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]
  ☆377Jan 23, 2025Updated last year
• JailbreakBench / jailbreakbench

  View on GitHub
  JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]
  ☆531Apr 4, 2025Updated 10 months ago
• sherdencooper / GPTFuzz

  View on GitHub
  Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Prompts
  ☆566Sep 24, 2024Updated last year
• EasyJailbreak / EasyJailbreak

  View on GitHub
  An easy-to-use Python framework to generate adversarial jailbreak prompts.
  ☆815Mar 27, 2025Updated 11 months ago
• CHATS-lab / persuasive_jailbreaker

  View on GitHub
  Persuasive Jailbreaker: we can persuade LLMs to jailbreak them!
  ☆350Oct 17, 2025Updated 4 months ago
• weizeming / momentum-attack-llm

  View on GitHub
  ☆23Jan 17, 2025Updated last year
• rotaryhammer / code-autodan

  View on GitHub
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆45Feb 8, 2024Updated 2 years ago
• Yu-Fangxu / COLD-Attack

  View on GitHub
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆176Dec 18, 2024Updated last year
• GraySwanAI / nanoGCG

  View on GitHub
  A fast + lightweight implementation of the GCG algorithm in PyTorch
  ☆318May 13, 2025Updated 9 months ago
• centerforaisafety / HarmBench

  View on GitHub
  HarmBench: A Standardized Evaluation Framework for Automated Red Teaming and Robust Refusal
  ☆858Aug 16, 2024Updated last year
• huizhang-L / CodeChameleon

  View on GitHub
  ☆28Mar 20, 2024Updated last year
• kztakemoto / simbaja

  View on GitHub
  All in How You Ask for It: Simple Black-Box Method for Jailbreak Attacks
  ☆18Apr 24, 2024Updated last year
• NJUNLP / ReNeLLM

  View on GitHub
  The official implementation of our NAACL 2024 paper "A Wolf in Sheep’s Clothing: Generalized Nested Jailbreak Prompts can Fool Large Lang…
  ☆153Sep 2, 2025Updated 5 months ago
• sail-sg / I-FSJ

  View on GitHub
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆65Jan 11, 2025Updated last year
• GraySwanAI / circuit-breakers

  View on GitHub
  Improving Alignment and Robustness with Circuit Breakers
  ☆258Sep 24, 2024Updated last year
• ethz-spylab / rlhf-poisoning

  View on GitHub
  Code for paper "Universal Jailbreak Backdoors from Poisoned Human Feedback"
  ☆66Apr 24, 2024Updated last year
• yueliu1999 / FlipAttack

  View on GitHub
  [ICML 2025] An official source code for paper "FlipAttack: Jailbreak LLMs via Flipping".
  ☆165May 2, 2025Updated 9 months ago
• OSU-NLP-Group / AmpleGCG

  View on GitHub
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆83Nov 3, 2024Updated last year
• SheltonLiu-N / Universal-Prompt-Injection

  View on GitHub
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆69Oct 23, 2024Updated last year
• tmlr-group / DeepInception

  View on GitHub
  [arXiv:2311.03191] "DeepInception: Hypnotize Large Language Model to Be Jailbreaker"
  ☆173Feb 20, 2024Updated 2 years ago
• xirui-li / DrAttack

  View on GitHub
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆66Aug 25, 2024Updated last year
• Princeton-SysML / Jailbreak_LLM

  View on GitHub
  ☆195Nov 26, 2023Updated 2 years ago
• thu-coai / JailbreakDefense_GoalPriority

  View on GitHub
  [ACL 2024] Defending Large Language Models Against Jailbreaking Attacks Through Goal Prioritization
  ☆29Jul 9, 2024Updated last year
• CryptoAILab / JailbreakEval

  View on GitHub
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆187Apr 1, 2025Updated 10 months ago
• kriti-hippo / red_queen

  View on GitHub
  Red Queen Dataset and data generation template
  ☆26Dec 26, 2025Updated 2 months ago
• liu00222 / Open-Prompt-Injection

  View on GitHub
  This repository provides a benchmark for prompt injection attacks and defenses in LLMs
  ☆395Oct 29, 2025Updated 4 months ago
• CryptoAILab / FigStep

  View on GitHub
  [AAAI'25 (Oral)] Jailbreaking Large Vision-language Models via Typographic Visual Prompts
  ☆191Jun 26, 2025Updated 8 months ago
• facebookresearch / SecAlign

  View on GitHub
  Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"
  ☆86Jul 24, 2025Updated 7 months ago
• YancyKahn / CoA

  View on GitHub
  Chain of Attack: a Semantic-Driven Contextual Multi-Turn attacker for LLM
  ☆39Jan 17, 2025Updated last year
• AI45Lab / ActorAttack

  View on GitHub
  ☆121Feb 3, 2025Updated last year
• paul-rottger / xstest

  View on GitHub
  Röttger et al. (NAACL 2024): "XSTest: A Test Suite for Identifying Exaggerated Safety Behaviours in Large Language Models"
  ☆127Feb 24, 2025Updated last year
• vinusankars / BEAST

  View on GitHub
  Implementation of BEAST adversarial attack for language models (ICML 2024)
  ☆90May 14, 2024Updated last year
• NLie2 / what_features_jailbreak_LLMs

  View on GitHub
  ☆18Mar 30, 2025Updated 11 months ago
• vinid / safety-tuned-llamas

  View on GitHub
  ICLR2024 Paper. Showing properties of safety tuning and exaggerated safety.
  ☆93May 9, 2024Updated last year