Alternatives and similar repositories for auditing-llms

Users that are interested in auditing-llms are comparing it to the libraries listed below

• locuslab / acr-memorization
  ☆34Updated 5 months ago
• Vaidehi99 / InfoDeletionAttacks
  ☆44Updated 3 months ago
• sail-sg / I-FSJ
  Improved Few-Shot Jailbreaking Can Circumvent Aligned Language Models and Their Defenses (NeurIPS 2024)
  ☆61Updated 4 months ago
• paul-rottger / xstest
  Röttger et al. (NAACL 2024): "XSTest: A Test Suite for Identifying Exaggerated Safety Behaviours in Large Language Models"
  ☆97Updated 3 months ago
• centerforaisafety / tdc2023-starter-kit
  This is the starter kit for the Trojan Detection Challenge 2023 (LLM Edition), a NeurIPS 2023 competition.
  ☆89Updated last year
• McGill-NLP / AdversarialTriggers
  Code for "Universal Adversarial Triggers Are Not Universal."
  ☆17Updated last year
• lapisrocks / rpo
  Official repository for "Robust Prompt Optimization for Defending Language Models Against Jailbreaking Attacks"
  ☆53Updated 9 months ago
• OSU-NLP-Group / AmpleGCG
  AmpleGCG: Learning a Universal and Transferable Generator of Adversarial Attacks on Both Open and Closed LLM
  ☆64Updated 7 months ago
• SafeAILab / RAIN
  [ICLR'24] RAIN: Your Language Models Can Align Themselves without Finetuning
  ☆93Updated last year
• rishub-tamirisa / tamper-resistance
  [ICLR 2025] Official Repository for "Tamper-Resistant Safeguards for Open-Weight LLMs"
  ☆56Updated 3 months ago
• ethz-spylab / rlhf-poisoning
  Code for paper "Universal Jailbreak Backdoors from Poisoned Human Feedback"
  ☆54Updated last year
• ajyl / dpo_toxic
  A Mechanistic Understanding of Alignment Algorithms: A Case Study on DPO and Toxicity.
  ☆72Updated 2 months ago
• aengusl / latent-adversarial-training
  ☆39Updated 8 months ago
• s-ball-10 / jailbreak_dynamics
  ☆15Updated 11 months ago
• boyiwei / alignment-attribution-code
  [ICML 2024] Assessing the Brittleness of Safety Alignment via Pruning and Low-Rank Modifications
  ☆79Updated 2 months ago
• vfleaking / PTST
  Code for safety test in "Keeping LLMs Aligned After Fine-tuning: The Crucial Role of Prompt Templates"
  ☆18Updated last year
• thestephencasper / latent_adversarial_training
  ☆22Updated 10 months ago
• swj0419 / muse_bench
  ☆21Updated 2 months ago
• facebookresearch / jailbreak-objectives
  Code and data to go with the Zhu et al. paper "An Objective for Nuanced LLM Jailbreaks"
  ☆31Updated 5 months ago
• neelsjain / baseline-defenses
  Official Code for "Baseline Defenses for Adversarial Attacks Against Aligned Language Models"
  ☆24Updated last year
• thestephencasper / explore_establish_exploit_llms
  ☆31Updated last year
• SORRY-Bench / sorry-bench
  Benchmark evaluation code for "SORRY-Bench: Systematically Evaluating Large Language Model Safety Refusal" (ICLR 2025)
  ☆54Updated 3 months ago
• Confirm-Solutions / flrt
  Fluent student-teacher redteaming
  ☆21Updated 10 months ago
• azshue / AutoPoison
  The official repository of the paper "On the Exploitability of Instruction Tuning".
  ☆63Updated last year
• vinid / safety-tuned-llamas
  ICLR2024 Paper. Showing properties of safety tuning and exaggerated safety.
  ☆84Updated last year
• JonasGeiping / carving
  Package to optimize Adversarial Attacks against (Large) Language Models with Varied Objectives
  ☆69Updated last year
• XuandongZhao / weak-to-strong
  [ICML 2025] Weak-to-Strong Jailbreaking on Large Language Models
  ☆76Updated last month
• yihuaihong / ConceptVectors
  ConceptVectors Benchmark and Code for the paper "Intrinsic Evaluation of Unlearning Using Parametric Knowledge Traces"
  ☆35Updated 3 months ago
• princeton-nlp / benign-data-breaks-safety
  ☆41Updated 8 months ago
• zhaoyiran924 / Probe-Sampling
  [NeurIPS 2024] Accelerating Greedy Coordinate Gradient and General Prompt Optimization via Probe Sampling
  ☆28Updated 6 months ago