Alternatives and similar repositories for ASB

Users that are interested in ASB are comparing it to the libraries listed below

• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆197Updated 9 months ago
• uiuc-kang-lab / InjecAgent
  ☆115Updated last year
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆109Updated last year
• BHui97 / PLeak
  ☆78Updated last year
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆230Updated 2 weeks ago
• rucnyz / LeakAgent
  ☆28Updated 5 months ago
• AI-secure / RedCode
  [NeurIPS'24] RedCode: Risky Code Execution and Generation Benchmark for Code Agents
  ☆65Updated 2 months ago
• AI45Lab / ActorAttack
  ☆121Updated last year
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆63Updated 3 months ago
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆27Updated 4 months ago
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆162Updated last year
• CryptoAILab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆184Updated 10 months ago
• bboylyg / BackdoorLLM
  [NeurIPS 2025] BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks and Defenses on Large Language Models
  ☆273Updated last week
• chen37058 / Red-Team-Arxiv-Paper-Update
  Awesome Jailbreak, red teaming arxiv papers (Automatically Update Every 12th hours)
  ☆94Updated this week
• Allen-piexl / JailbreakZoo
  ☆164Updated last year
• facebookresearch / SecAlign
  Repo for the research paper "SecAlign: Defending Against Prompt Injection with Preference Optimization"
  ☆83Updated 6 months ago
• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆68Updated last year
• ShiJiawenwen / JudgeDeceiver
  [CCS 2024] Optimization-based Prompt Injection Attack to LLM-as-a-Judge
  ☆39Updated 4 months ago
• GodXuxilie / PromptAttack
  An LLM can Fool Itself: A Prompt-Based Adversarial Attack (ICLR 2024)
  ☆111Updated last year
• OSU-NLP-Group / AgentSafety
  ☆174Updated 3 months ago
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆219Updated last year
• ethz-spylab / agentdojo
  A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
  ☆425Updated last week
• thu-coai / Agent-SafetyBench
  ☆99Updated 5 months ago
• ChenWu98 / agent-attack
  [ICLR 2025] Dissecting adversarial robustness of multimodal language model agents
  ☆123Updated 11 months ago
• liu00222 / Open-Prompt-Injection
  This repository provides a benchmark for prompt injection attacks and defenses in LLMs
  ☆384Updated 3 months ago
• xirui-li / DrAttack
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆65Updated last year
• SolidShen / BAIT
  🔥🔥🔥 Detecting hidden backdoors in Large Language Models with only black-box access
  ☆52Updated 8 months ago
• xingjunm / Awesome-Large-Model-Safety
  Safety at Scale: A Comprehensive Survey of Large Model Safety
  ☆225Updated last week
• wagner-group / prompt-injection-defense
  Fine-tuning base models to build robust task-specific models
  ☆34Updated last year
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆48Updated last year