Alternatives and similar repositories for BAIT

Users that are interested in BAIT are comparing it to the libraries listed below

• ZhangZhuoSJTU / LINT
  ☆17Updated last year
• WUSTL-CSPL / LLMJailbreak
  ☆37Updated last year
• chichidd / llm-lora-trojan
  Code for paper "The Philosopher’s Stone: Trojaning Plugins of Large Language Models"
  ☆26Updated last year
• datasec-lab / CodeBreaker
  [USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…
  ☆56Updated 10 months ago
• uiuc-kang-lab / InjecAgent
  ☆112Updated last year
• BHui97 / PLeak
  ☆75Updated last year
• selfdefend / Code
  ☆31Updated last year
• agiresearch / ASB
  Agent Security Bench (ASB)
  ☆177Updated 3 months ago
• LLM-DRA / DRA
  [USENIX Security'24] Official repository of "Making Them Ask and Answer: Jailbreaking Large Language Models in Few Queries via Disguise a…
  ☆111Updated last year
• Lyz1213 / BadEdit
  ☆37Updated last year
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆60Updated 2 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆107Updated last year
• ltroin / llm_attack_defense_arena
  ☆86Updated 4 months ago
• PurduePAML / Machine-Learning-Security-Seminar
  Machine Learning & Security Seminar @Purdue University
  ☆25Updated 2 years ago
• rucnyz / LeakAgent
  ☆28Updated 5 months ago
• SolidShen / RIPPLE_official
  ☆20Updated last year
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆226Updated this week
• DPamK / BadAgent
  ☆28Updated 11 months ago
• Raytsang123 / CLIBE
  [NDSS 2025] "CLIBE: Detecting Dynamic Backdoors in Transformer-based NLP Models"
  ☆25Updated 5 months ago
• fzwark / Secure_LLM_System
  ☆13Updated 10 months ago
• Eyr3 / TextCRS
  Text-CRS: A Generalized Certified Robustness Framework against Textual Adversarial Attacks (IEEE S&P 2024)
  ☆34Updated 7 months ago
• bboylyg / BackdoorLLM
  [NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models
  ☆272Updated last week
• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆193Updated 9 months ago
• reza321 / T-Miner
  ☆19Updated last year
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆27Updated 3 months ago
• Megum1 / ODSCAN
  [IEEE S&P'24] ODSCAN: Backdoor Scanning for Object Detection Models
  ☆20Updated 3 months ago
• Gwinhen / DRUPE
  Distribution Preserving Backdoor Attack in Self-supervised Learning
  ☆20Updated 2 years ago
• chen37058 / Red-Team-Arxiv-Paper-Update
  Awesome Jailbreak, red teaming arxiv papers (Automatically Update Every 12th hours)
  ☆89Updated last week
• huizhang-L / CodeChameleon
  ☆27Updated last year
• Megum1 / BEAGLE
  [NDSS'23] BEAGLE: Forensics of Deep Learning Backdoor Attack for Better Defense
  ☆17Updated last year