Alternatives and similar repositories for ASB:

Users that are interested in ASB are comparing it to the libraries listed below

• AI-secure / AgentPoison
  [NeurIPS 2024] Official implementation for "AgentPoison: Red-teaming LLM Agents via Memory or Knowledge Base Backdoor Poisoning"
  ☆111Updated 2 months ago
• uiuc-kang-lab / InjecAgent
  ☆58Updated 9 months ago
• pasquini-dario / LLM_NeuralExec
  Code to generate NeuralExecs (prompt injection for LLMs)
  ☆20Updated 4 months ago
• lancopku / agent-backdoor-attacks
  Code&Data for the paper "Watch Out for Your Agents! Investigating Backdoor Threats to LLM-Based Agents" [NeurIPS 2024]
  ☆67Updated 6 months ago
• AI45Lab / ActorAttack
  ☆81Updated 2 months ago
• ChenWu98 / agent-attack
  [ICLR 2025] Dissecting Adversarial Robustness of Multimodal LM Agents
  ☆80Updated last month
• ThuCCSLab / JailbreakEval
  [NDSS'25 Best Technical Poster] A collection of automated evaluators for assessing jailbreak attempts.
  ☆147Updated last week
• BHui97 / PLeak
  ☆54Updated 3 months ago
• chen37058 / Red-Team-Arxiv-Paper-Update
  Awesome Jailbreak, red teaming arxiv papers (Automatically Update Every 12th hours)
  ☆25Updated this week
• Django-Jiang / BadChain
  [ICLR24] Official Repo of BadChain: Backdoor Chain-of-Thought Prompting for Large Language Models
  ☆33Updated 8 months ago
• usail-hkust / JailTrickBench
  Bag of Tricks: Benchmarking of Jailbreak Attacks on LLMs. Empirical tricks for LLM Jailbreaking. (NeurIPS 2024)
  ☆133Updated 4 months ago
• rucnyz / PrivAgent
  ☆14Updated 4 months ago
• sleeepeer / PoisonedRAG
  [USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
  ☆138Updated last month
• tmlr-group / DeepInception
  [arXiv:2311.03191] "DeepInception: Hypnotize Large Language Model to Be Jailbreaker"
  ☆136Updated last year
• bboylyg / BackdoorLLM
  BackdoorLLM: A Comprehensive Benchmark for Backdoor Attacks on Large Language Models
  ☆130Updated last month
• xirui-li / DrAttack
  Official implementation of paper: DrAttack: Prompt Decomposition and Reconstruction Makes Powerful LLM Jailbreakers
  ☆52Updated 7 months ago
• SheltonLiu-N / Universal-Prompt-Injection
  The official implementation of our pre-print paper "Automatic and Universal Prompt Injection Attacks against Large Language Models".
  ☆44Updated 5 months ago
• OSU-NLP-Group / AgentSafety
  ☆62Updated 2 months ago
• Sizhe-Chen / StruQ
  official implementation of [USENIX Sec'25] StruQ: Defending Against Prompt Injection with Structured Queries
  ☆31Updated 3 weeks ago
• thu-coai / Agent-SafetyBench
  ☆23Updated last month
• RICommunity / TAP
  TAP: An automated jailbreaking method for black-box LLMs
  ☆162Updated 4 months ago
• Lyz1213 / BadEdit
  ☆25Updated 5 months ago
• XHMY / AutoDefense
  AutoDefense: Multi-Agent LLM Defense against Jailbreak Attacks
  ☆40Updated 10 months ago
• SORRY-Bench / sorry-bench
  Benchmark evaluation code for "SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal" (ICLR 2025)
  ☆50Updated last month
• YihanWang617 / llm-jailbreaking-defense
  A lightweight library for large laguage model (LLM) jailbreaking defense.
  ☆51Updated 5 months ago
• datasec-lab / CodeBreaker
  [USENIX Security '24] An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities agai…
  ☆44Updated 3 weeks ago
• ShiJiawenwen / JudgeDeceiver
  [CCS 2024] Optimization-based Prompt Injection Attack to LLM-as-a-Judge
  ☆18Updated 4 months ago
• wagner-group / prompt-injection-defense
  Fine-tuning base models to build robust task-specific models
  ☆28Updated last year
• rotaryhammer / code-autodan
  An unofficial implementation of AutoDAN attack on LLMs (arXiv:2310.15140)
  ☆37Updated last year
• liu00222 / Open-Prompt-Injection
  This repository provides implementation to formalize and benchmark Prompt Injection attacks and defenses
  ☆181Updated 2 months ago