RICommunity/TAP external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RICommunity/TAP

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RICommunity/TAP)

Close

RICommunity / TAPView on GitHubMore

• External links
• Readme badge

TAP: An automated jailbreaking method for black-box LLMs

☆222Dec 10, 2024Updated last year

Alternatives and similar repositories for TAP

Users that are interested in TAP are comparing it to the libraries listed below

• patrickrchao / JailbreakingLLMs

  View on GitHub
  ☆704Jul 2, 2025Updated 8 months ago
• chawins / pal

  View on GitHub
  PAL: Proxy-Guided Black-Box Attack on Large Language Models
  ☆57Aug 17, 2024Updated last year
• usail-hkust / JailTrickBench

  View on GitHub
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆162Nov 30, 2024Updated last year
• facebookresearch / advprompter

  View on GitHub
  Official implementation of AdvPrompter https//arxiv.org/abs/2404.16873
  ☆179May 6, 2024Updated last year
• JailbreakBench / jailbreakbench

  View on GitHub
  JailbreakBench: An Open Robustness Benchmark for Jailbreaking Language Models [NeurIPS 2024 Datasets and Benchmarks Track]
  ☆546Apr 4, 2025Updated 11 months ago
• SheltonLiu-N / AutoDAN

  View on GitHub
  [ICLR 2024] The official implementation of our ICLR2024 paper "AutoDAN: Generating Stealthy Jailbreak Prompts on Aligned Large Language M…
  ☆434Jan 22, 2025Updated last year
• tml-epfl / llm-adaptive-attacks

  View on GitHub
  Jailbreaking Leading Safety-Aligned LLMs with Simple Adaptive Attacks [ICLR 2025]
  ☆380Jan 23, 2025Updated last year
• sherdencooper / GPTFuzz

  View on GitHub
  Official repo for GPTFUZZER : Red Teaming Large Language Models with Auto-Generated Jailbreak Prompts
  ☆572Feb 27, 2026Updated 3 weeks ago
• CHATS-lab / persuasive_jailbreaker

  View on GitHub
  Persuasive Jailbreaker: we can persuade LLMs to jailbreak them!
  ☆352Oct 17, 2025Updated 5 months ago
• EasyJailbreak / EasyJailbreak

  View on GitHub
  An easy-to-use Python framework to generate adversarial jailbreak prompts.
  ☆826Mar 27, 2025Updated 11 months ago
• Yu-Fangxu / COLD-Attack

  View on GitHub
  [ICML 2024] COLD-Attack: Jailbreaking LLMs with Stealthiness and Controllability
  ☆176Dec 18, 2024Updated last year
• huizhang-L / CodeChameleon

  View on GitHub
  ☆28Mar 20, 2024Updated 2 years ago
• rotaryhammer / code-autodan

  View on GitHub
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆45Feb 8, 2024Updated 2 years ago
• thu-coai / JailbreakDefense_GoalPriority

  View on GitHub
  [ACL 2024] Defending Large Language Models Against Jailbreaking Attacks Through Goal Prioritization
  ☆29Jul 9, 2024Updated last year
• weizeming / momentum-attack-llm

  View on GitHub
  ☆23Jan 17, 2025Updated last year
• centerforaisafety / HarmBench

  View on GitHub
  HarmBench: A Standardized Evaluation Framework for Automated Red Teaming and Robust Refusal
  ☆879Aug 16, 2024Updated last year
• NJUNLP / ReNeLLM

  View on GitHub
  The official implementation of our NAACL 2024 paper "A Wolf in Sheep’s Clothing: Generalized Nested Jailbreak Prompts can Fool Large Lang…
  ☆155Sep 2, 2025Updated 6 months ago
• kztakemoto / simbaja

  View on GitHub
  All in How You Ask for It: Simple Black-Box Method for Jailbreak Attacks
  ☆18Apr 24, 2024Updated last year
• sail-sg / I-FSJ

  View on GitHub
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆65Jan 11, 2025Updated last year
• GraySwanAI / nanoGCG

  View on GitHub
  A fast + lightweight implementation of the GCG algorithm in PyTorch
  ☆321May 13, 2025Updated 10 months ago
• GraySwanAI / circuit-breakers

  View on GitHub
  Improving Alignment and Robustness with Circuit Breakers
  ☆259Sep 24, 2024Updated last year
• LLMSecurity / MasterKey

  View on GitHub
  MASTERKEY is a framework designed to explore and exploit vulnerabilities in large language model chatbots by automating jailbreak attacks…
  ☆35Sep 12, 2024Updated last year
• tmlr-group / DeepInception

  View on GitHub
  [arXiv:2311.03191] "DeepInception: Hypnotize Large Language Model to Be Jailbreaker"
  ☆172Feb 20, 2024Updated 2 years ago
• liu00222 / Open-Prompt-Injection

  View on GitHub
  This repository provides a benchmark for prompt injection attacks and defenses in LLMs
  ☆409Oct 29, 2025Updated 4 months ago
• paul-rottger / xstest

  View on GitHub
  Röttger et al. (NAACL 2024): "XSTest: A Test Suite for Identifying Exaggerated Safety Behaviours in Large Language Models"
  ☆129Feb 24, 2025Updated last year
• Princeton-SysML / Jailbreak_LLM

  View on GitHub
  ☆196Nov 26, 2023Updated 2 years ago
• kriti-hippo / red_queen

  View on GitHub
  Red Queen Dataset and data generation template
  ☆27Dec 26, 2025Updated 2 months ago
• yueliu1999 / FlipAttack

  View on GitHub
  [ICML 2025] An official source code for paper "FlipAttack: Jailbreak LLMs via Flipping".
  ☆168May 2, 2025Updated 10 months ago
• OSU-NLP-Group / AmpleGCG

  View on GitHub
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆83Nov 3, 2024Updated last year
• SheltonLiu-N / Universal-Prompt-Injection

  View on GitHub
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆69Oct 23, 2024Updated last year
• llm-attacks / llm-attacks

  View on GitHub
  Universal and Transferable Attacks on Aligned Language Models
  ☆4,568Aug 2, 2024Updated last year
• NLie2 / what_features_jailbreak_LLMs

  View on GitHub
  ☆18Mar 30, 2025Updated 11 months ago
• xirui-li / DrAttack

  View on GitHub
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆66Aug 25, 2024Updated last year
• ethz-spylab / rlhf-poisoning

  View on GitHub
  Code for paper "Universal Jailbreak Backdoors from Poisoned Human Feedback"
  ☆66Apr 24, 2024Updated last year
• AI45Lab / ActorAttack

  View on GitHub
  ☆124Feb 3, 2025Updated last year
• YancyKahn / CoA

  View on GitHub
  Chain of Attack: a Semantic-Driven Contextual Multi-Turn attacker for LLM
  ☆39Jan 17, 2025Updated last year
• CryptoAILab / FigStep

  View on GitHub
  [AAAI'25 (Oral)] Jailbreaking Large Vision-language Models via Typographic Visual Prompts
  ☆196Jun 26, 2025Updated 8 months ago
• LLM-Tuning-Safety / LLMs-Finetuning-Safety

  View on GitHub
  We jailbreak GPT-3.5 Turbo’s safety guardrails by fine-tuning it on only 10 adversarially designed examples, at a cost of less than $0.20…
  ☆345Feb 23, 2024Updated 2 years ago
• vinusankars / BEAST

  View on GitHub
  Implementation of BEAST adversarial attack for language models (ICML 2024)
  ☆90May 14, 2024Updated last year