Alternatives and similar repositories for BAIT

Users that are interested in BAIT are comparing it to the libraries listed below

• ZhangZhuoSJTU / LINT
  ☆17Updated last year
• WUSTL-CSPL / LLMJailbreak
  ☆36Updated last year
• Lyz1213 / BadEdit
  ☆36Updated last year
• BHui97 / PLeak
  ☆65Updated 10 months ago
• PurduePAML / Machine-Learning-Security-Seminar
  Machine Learning & Security Seminar @Purdue University
  ☆25Updated 2 years ago
• ltroin / llm_attack_defense_arena
  ☆82Updated last month
• CryptoAILab / misalignment
  [NDSS'25] The official implementation of safety misalignment.
  ☆17Updated 9 months ago
• MarkGHX / BiScope
  Official Implementation of NeurIPS 2024 paper - BiScope: AI-generated Text Detection by Checking Memorization of Preceding Tokens
  ☆25Updated 7 months ago
• SolidShen / RIPPLE_official
  ☆20Updated last year
• agiresearch / ASB
  Agent Security Bench (ASB)
  ☆137Updated 3 weeks ago
• selfdefend / Code
  ☆26Updated 9 months ago
• rucnyz / LeakAgent
  ☆24Updated last month
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆25Updated 3 weeks ago
• Raytsang123 / CLIBE
  [NDSS 2025] "CLIBE: Detecting Dynamic Backdoors in Transformer-based NLP Models"
  ☆21Updated 2 months ago
• chichidd / llm-lora-trojan
  Code for paper "The Philosopher’s Stone: Trojaning Plugins of Large Language Models"
  ☆25Updated last year
• iliaishacked / sponge_examples
  ☆25Updated 4 years ago
• reza321 / T-Miner
  ☆19Updated last year
• datasec-lab / CodeBreaker
  [USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…
  ☆52Updated 7 months ago
• uiuc-kang-lab / InjecAgent
  ☆83Updated last year
• Eyr3 / TextCRS
  Text-CRS: A Generalized Certified Robustness Framework against Textual Adversarial Attacks (IEEE S&P 2024)
  ☆34Updated 4 months ago
• zhangrui4041 / Instruction_Backdoor_Attack
  ☆27Updated last year
• TrustAIRLab / VoiceJailbreakAttack
  Code for Voice Jailbreak Attacks Against GPT-4o.
  ☆36Updated last year
• bboylyg / BackdoorLLM
  [NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models
  ☆226Updated this week
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆48Updated 3 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆93Updated last year
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆209Updated 8 months ago
• Gwinhen / DRUPE
  Distribution Preserving Backdoor Attack in Self-supervised Learning
  ☆18Updated last year
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆160Updated 6 months ago
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆41Updated last year
• PurduePAML / DBS
  ☆18Updated 3 years ago